Количество 2
Количество 2
CVE-2020-13970
больше 5 лет назад
Shopware before 6.2.3 is vulnerable to a Server-Side Request Forgery (SSRF) in its "Mediabrowser upload by URL" feature. This allows an authenticated user to send HTTP, HTTPS, FTP, and SFTP requests on behalf of the Shopware platform server.
CVSS3: 8.8
EPSS: Низкий
GHSA-5vmg-x99g-396q
больше 3 лет назад
Shopware vulnerable to SSRF
CVSS3: 8.8
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-13970 Shopware before 6.2.3 is vulnerable to a Server-Side Request Forgery (SSRF) in its "Mediabrowser upload by URL" feature. This allows an authenticated user to send HTTP, HTTPS, FTP, and SFTP requests on behalf of the Shopware platform server. | CVSS3: 8.8 | 0% Низкий | больше 5 лет назад |
| GHSA-5vmg-x99g-396q Shopware vulnerable to SSRF | CVSS3: 8.8 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу
20