exploitDog

GHSA-9p5w-mcv2-g785

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

An SSRF vulnerability was discovered in idreamsoft iCMS V7.0.9 that allows attackers to read sensitive files, access an intranet, or possibly have unspecified other impact.

An SSRF vulnerability was discovered in idreamsoft iCMS V7.0.9 that allows attackers to read sensitive files, access an intranet, or possibly have unspecified other impact.

Ссылки

EPSS

Процентиль: 65%

0.00482

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-918

Связанные уязвимости

CVE-2018-14514

CVSS3: 9.8

nvd

больше 7 лет назад

An SSRF vulnerability was discovered in idreamsoft iCMS V7.0.9 that allows attackers to read sensitive files, access an intranet, or possibly have unspecified other impact.

EPSS

Процентиль: 65%

0.00482

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-918