exploitDog

GHSA-v2j5-972j-h7cp

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.4

Описание

The media-file upload feature in GeniXCMS through 0.0.8 allows remote attackers to conduct SSRF attacks via a URL, as demonstrated by a URL with an intranet IP address.

The media-file upload feature in GeniXCMS through 0.0.8 allows remote attackers to conduct SSRF attacks via a URL, as demonstrated by a URL with an intranet IP address.

Ссылки

EPSS

Процентиль: 60%

0.00403

Низкий

7.4 High

CVSS3

CVE ID

Дефекты

CWE-918

Связанные уязвимости

CVE-2017-5518

CVSS3: 7.4

nvd

около 9 лет назад

The media-file upload feature in GeniXCMS through 0.0.8 allows remote attackers to conduct SSRF attacks via a URL, as demonstrated by a URL with an intranet IP address.

EPSS

Процентиль: 60%

0.00403

Низкий

7.4 High

CVSS3

CVE ID

Дефекты

CWE-918