Lucene search
MitreCVELIST:CVE-2018-9302HistoryMay 02, 2018 - 3:00 p.m.
CVE-2018-9302
2018-05-0215:00:00
mitre
www.cve.org
1
SSRF (Server Side Request Forgery) in /assets/lib/fuc.js.php in Cockpit 0.4.4 through 0.5.5 allows remote attackers to read arbitrary files or send TCP traffic to intranet hosts via the url parameter. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-14611, which was about version 0.13.0, which (surprisingly) is an earlier version than 0.4.4.
Related
packetstorm
packetstorm
Cockpit CMS 0.5.5 Server-Side Request Forgery
2018-04-28 00:00:00
Cockpit CMS 0.13.0 Server Side Request Forgery
2018-04-06 00:00:00
prion
prion
Server side request forgery (ssrf)
2018-05-02 15:29:00
Server side request forgery (ssrf)
2018-04-10 15:29:00
cve
cve
CVE-2018-9302
2018-05-02 15:29:01
CVE-2017-14611
2018-04-10 15:29:01
exploitpack
exploitpack
Cockpit CMS 0.4.4 0.5.5 - Server-Side Request Forgery
2018-05-02 00:00:00
nvd
nvd
CVE-2018-9302
2018-05-02 15:29:01
CVE-2017-14611
2018-04-10 15:29:01
exploitdb
exploitdb
Cockpit CMS 0.4.4 < 0.5.5 - Server-Side Request Forgery
2018-05-02 00:00:00
zdt
zdt
Cockpit CMS 0.13.0 Server Side Request Forgery Vulnerability
2018-04-08 00:00:00
Cockpit CMS 0.4.4-0.5.5 - Server-Side Request Forgery Vulnerability
2018-05-02 00:00:00
veracode
veracode
Sever Side Request Forgery (SSRF)
2018-04-09 03:41:25
cvelist
cvelist
CVE-2017-14611
2018-04-10 15:00:00