Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:GHSA-MGV8-W49F-822W
HistoryApr 12, 2024 - 9:25 p.m.

Mautic: MST-48 Server-Side Request Forgery in Asset section

2024-04-1221:25:18
Google
osv.dev
7
mautic
mst-48
ssrf
vulnerability
fix
4.4.12
5.0.4
owasp

6.6 Medium

AI Score

Confidence

High

JSON

Impact

Prior to the patched version, an authenticated user of Mautic could read system files and access the internal addresses of the application due to a Server-Side Request Forgery (SSRF) vulnerability.

Patches

Update to 4.4.12 or 5.0.4

Workarounds

None

References

If you have any questions or comments about this advisory:

Email us at [email protected]

Related

veracode 1
github 1
veracode
veracode
Server-Side Request Forgery (SSRF)
2024-04-15 12:59:46
github
github
Mautic: MST-48 Server-Side Request Forgery in Asset section
2024-04-12 21:25:18

6.6 Medium

AI Score

Confidence

High

JSON
Related for OSV:GHSA-MGV8-W49F-822W
veracode1github1