Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2026/03/28 4:56 a.m.1 views

CVE-2026-30637

Server-Side Request Forgery SSRF vulnerability exists in the AnnounContent of the /admin/read.php in OTCMS V7.66 and before. The vulnerability allows remote attackers to craft HTTP requests, without authentication, containing a URL pointing to internal services or any remote server...

7.5CVSS6AI score0.00232EPSS
Exploits1References1
NVD
NVDadded 2026/03/27 3:16 p.m.0 views

CVE-2026-30637

Server-Side Request Forgery SSRF vulnerability exists in the AnnounContent of the /admin/read.php in OTCMS V7.66 and before. The vulnerability allows remote attackers to craft HTTP requests, without authentication, containing a URL pointing to internal services or any remote server...

7.5CVSS0.00232EPSS
Exploits1References1
Cvelist
Cvelistadded 2026/03/27 12:0 a.m.18 views

CVE-2026-30637

Server-Side Request Forgery SSRF vulnerability exists in the AnnounContent of the /admin/read.php in OTCMS V7.66 and before. The vulnerability allows remote attackers to craft HTTP requests, without authentication, containing a URL pointing to internal services or any remote server...

0.00232EPSS
Exploits1References1
CVE
CVEadded 2026/03/27 12:0 a.m.1 views

CVE-2026-30637

CVE-2026-30637 is an SSRF vulnerability in OTCMS prior to V7.66, affecting the AnnounContent in /admin/read.php. The issue allows unauthenticated attackers to craft HTTP requests to internal or arbitrary remote URLs. The CVSS v3.1 base score is 7.5 (HIGH) with network access, low attack complexit...

7.5CVSS6AI score0.00232EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologiesadded 2026/03/27 12:0 a.m.1 views

PT-2026-28416

Server-Side Request Forgery SSRF vulnerability exists in the AnnounContent of the /admin/read.php in OTCMS V7.66 and before. The vulnerability allows remote attackers to craft HTTP requests, without authentication, containing a URL pointing to internal services or any remote server...

7.5CVSS6AI score0.00232EPSS
Exploits1References2
CNNVD
CNNVDadded 2026/03/27 12:0 a.m.3 views

OTCMS 安全漏洞

OTCMS is a content management system CMS for article-based websites developed by OTCMS Inc. Versions of OTCMS prior to V7.66 contained security vulnerabilities. These vulnerabilities stemmed from server-side request forgeing in the AnnounContent module of the admin/read.php file. This vulnerabili...

7.5CVSS5.9AI score0.00232EPSS
Exploits1References1
OSV
OSVadded 2023/06/14 9:15 a.m.0 views

CVE-2023-3241

A vulnerability was found in OTCMS up to 6.62 and classified as problematic. Affected by this issue is some unknown functionality of the file /admin/read.php?mudi=announContent. The manipulation of the argument url leads to path traversal. The exploit has been disclosed to the public and may be...

7.5CVSS4.7AI score
Exploits0References3
Positive Technologies
Positive Technologiesadded 2023/06/14 12:0 a.m.2 views

PT-2023-23778 · Otcms · Otcms

Name of the Vulnerable Software and Affected Versions: OTCMS versions up to 6.62 Description: A vulnerability was found in OTCMS, affecting some unknown functionality of the file "/admin/read.php?mudi=announContent". The manipulation of the url argument leads to path traversal. The exploit has be...

7.5CVSS4.5AI score0.00153EPSS
Exploits1References4
Rows per page
Query Builder