exploitDog

CVE-2024-46468

Опубликовано: 11 окт. 2024

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

A Server-Side Request Forgery (SSRF) vulnerability exists in the jpress <= v5.1.1, which can be exploited by an attacker to obtain sensitive information, resulting in an information disclosure.

Ссылки

https://gist.github.com/ilikeoyt/b396bbb9ef858105c46e999630e7afbe
Third Party Advisory
https://github.com/JPressProjects/jpress/issues/190
Exploit
Issue Tracking
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:jpress:jpress:*:*:*:*:*:*:*:*

Версия до 5.1.1 (включая)

EPSS

Процентиль: 53%

0.00304

Низкий

7.5 High

CVSS3

Дефекты

CWE-918

Связанные уязвимости

GHSA-586r-qxpv-m44q

CVSS3: 7.5

github

больше 1 года назад

A Server-Side Request Forgery (SSRF) vulnerability exists in the jpress <= v5.1.1, which can be exploited by an attacker to obtain sensitive information, resulting in an information disclosure.

EPSS

Процентиль: 53%

0.00304

Низкий

7.5 High

CVSS3

Дефекты

CWE-918