Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 7:15 a.m.7 views

CVE-2017-15644

SSRF exists in Webmin 1.850 via the PATHINFO to tunnel/link.cgi, as demonstrated by a GET request for tunnel/link.cgi/http://INTRANET-IP:8000...

8.6CVSS6.8AI score0.08932EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/05 2:48 p.m.12 views

CVE-2020-15644

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Marvell QConvergeConsole 5.5.0.64. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

9CVSS7.4AI score0.09255EPSS
Exploits0References5
CVE
CVE
added 2020/08/25 8:21 p.m.63 views

CVE-2020-15644

Marvell QConvergeConsole 5.5.0.64 is affected by CVE-2020-15644. The flaw is in setAppFileBytes of the GWTTestServiceImpl class, where user-supplied paths are not properly validated before file operations, enabling a directory-traversal-style path to be exploited. This can allow remote attackers ...

9CVSS8.9AI score0.09255EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2019/08/27 11:22 a.m.14 views

CVE-2019-15644

The zoho-salesiq plugin before 1.0.9 for WordPress has stored XSS...

6.4AI score0.00922EPSS
Exploits0References2
CVE
CVE
added 2019/08/27 11:22 a.m.51 views

CVE-2019-15644

The provided connected records confirm a concrete vulnerability: the WordPress plugin Zoho SalesIQ before version 1.0.9 contains a stored XSS vulnerability. The CVE description, CNVD/Red Hat entries, and CVE lists (and WPVulnDB/CNVD variants) consistently state a WordPress plugin flaw that allows...

6.1CVSS6.3AI score0.00922EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2017/10/19 10:29 p.m.17 views

CVE-2017-15644

SSRF exists in Webmin 1.850 via the PATHINFO to tunnel/link.cgi, as demonstrated by a GET request for tunnel/link.cgi/http://INTRANET-IP:8000...

8.6CVSS7AI score
Exploits0References4
CVE
CVE
added 1976/01/01 12:0 a.m.22 views

CVE-2018-15644

CVE-2018-15644 is rejected/not used per the Initial Description; this entry does not represent an active vulnerability.

7.4AI score
Exploits0
Cvelist
Cvelist
added 1976/01/01 12:0 a.m.6 views

CVE-2018-15644

...

Exploits0
Rows per page
Query Builder