Lucene search

K
cve[email protected]CVE-2024-33627
HistoryApr 29, 2024 - 8:15 a.m.

CVE-2024-33627

2024-04-2908:15:07
CWE-918
web.nvd.nist.gov
22
ssrf
cusmin absolutely glamorous
custom admin
vulnerability

4.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N

6.8 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.0%

Server-Side Request Forgery (SSRF) vulnerability in Cusmin Absolutely Glamorous Custom Admin.This issue affects Absolutely Glamorous Custom Admin: from n/a through 7.2.2.

Affected configurations

Vulners
Node
cusminabsolutely_glamorous_custom_adminRange7.2.2
VendorProductVersionCPE
cusminabsolutely_glamorous_custom_admin*cpe:2.3:a:cusmin:absolutely_glamorous_custom_admin:*:*:*:*:*:*:*:*

CNA Affected

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "ag-custom-admin",
    "product": "Absolutely Glamorous Custom Admin",
    "vendor": "Cusmin",
    "versions": [
      {
        "lessThanOrEqual": "7.2.2",
        "status": "affected",
        "version": "n/a",
        "versionType": "custom"
      }
    ]
  }
]

4.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N

6.8 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.0%

Related for CVE-2024-33627