exploitDog

GHSA-5cc9-m24m-vpr3

Опубликовано: 27 фев. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

A Server-Side Request Forgery (SSRF) in the component admin_webgather.php of SUCMS v1.0 allows attackers to access internal data and services via a crafted GET request.

A Server-Side Request Forgery (SSRF) in the component admin_webgather.php of SUCMS v1.0 allows attackers to access internal data and services via a crafted GET request.

Ссылки

EPSS

Процентиль: 31%

0.00116

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-918

Связанные уязвимости

CVE-2025-25760

CVSS3: 7.5

nvd

12 месяцев назад

A Server-Side Request Forgery (SSRF) in the component admin_webgather.php of SUCMS v1.0 allows attackers to access internal data and services via a crafted GET request.

EPSS

Процентиль: 31%

0.00116

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-918