exploitDog

CVE-2018-14728

Опубликовано: 03 авг. 2018

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Критический

Описание

upload.php in Responsive FileManager 9.13.1 allows SSRF via the url parameter.

Ссылки

http://packetstormsecurity.com/files/148742/Responsive-Filemanager-9.13.1-Server-Side-Request-Forgery.html
Exploit
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/45103/
Exploit
Third Party Advisory
VDB Entry
http://packetstormsecurity.com/files/148742/Responsive-Filemanager-9.13.1-Server-Side-Request-Forgery.html
Exploit
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/45103/
Exploit
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:tecrail:responsive_filemanager:9.13.1:*:*:*:*:*:*:*

EPSS

Процентиль: 100%

0.90868

Критический

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-918

Связанные уязвимости

GHSA-4954-r44g-wx43

CVSS3: 9.8

github

больше 3 лет назад

upload.php in Responsive FileManager 9.13.1 allows SSRF via the url parameter.

EPSS

Процентиль: 100%

0.90868

Критический

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-918