Lucene search
CERT-PLCVELIST:CVE-2024-5736HistoryJun 28, 2024 - 11:26 a.m.
CVE-2024-5736 SSRF in AdmirorFrames Joomla! Extension
2024-06-2811:26:53
CWE-918
CERT-PL
www.cve.org
6
cve-2024-5736
ssrf
admirorframes
joomla! extension
afgdstream.php
vulnerability
localhost access
8.2 High
CVSS4
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/SC:N/VI:N/SI:N/VA:N/SA:N/AU:Y/U:Green/R:U/V:D/RE:L
0.001 Low
EPSS
Percentile
26.5%
Server Side Request Forgery (SSRF) vulnerability in AdmirorFrames Joomla! extension in afGdStream.php script allows to access local files or server pages available only from localhost.Β This issue affects AdmirorFrames: before 5.0.
CNA Affected
[
{
"collectionURL": "https://www.admiror-design-studio.com/admiror-joomla-extensions/admiror-frames",
"defaultStatus": "unaffected",
"platforms": [
"Joomla!"
],
"product": "AdmirorFrames",
"repo": "https://github.com/vasiljevski/admirorframes",
"vendor": "Nikola Vasilijevski",
"versions": [
{
"lessThan": "5.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
]Related
vulnrichment
vulnrichment
CVE-2024-5736 SSRF in AdmirorFrames Joomla! Extension
2024-06-28 11:26:53
cve
cve
CVE-2024-5736
2024-06-28 12:15:10
nvd
nvd
CVE-2024-5736
2024-06-28 12:15:10
8.2 High
CVSS4
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/SC:N/VI:N/SI:N/VA:N/SA:N/AU:Y/U:Green/R:U/V:D/RE:L
0.001 Low
EPSS
Percentile
26.5%
Related for CVELIST:CVE-2024-5736