exploitDog

GHSA-hx8j-p33g-vmxv

Опубликовано: 05 июл. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

Volmarg Personal Management System 1.4.64 is vulnerable to SSRF (Server Side Request Forgery) via uploading a SVG file. The server can make unintended HTTP and DNS requests to a server that the attacker controls.

Volmarg Personal Management System 1.4.64 is vulnerable to SSRF (Server Side Request Forgery) via uploading a SVG file. The server can make unintended HTTP and DNS requests to a server that the attacker controls.

Ссылки

EPSS

Процентиль: 29%

0.00103

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-918

Связанные уязвимости

CVE-2024-29319

CVSS3: 9.8

nvd

больше 1 года назад

Volmarg Personal Management System 1.4.64 is vulnerable to SSRF (Server Side Request Forgery) via uploading a SVG file. The server can make unintended HTTP and DNS requests to a server that the attacker controls.

EPSS

Процентиль: 29%

0.00103

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-918