5 matches found
CVE-2020-28977
creationtimestamp| type| source ---|---|--- 2024-11-14 06:07:21+00:00| seen| MISP/a7309f2d-e828-4ff8-b32f-a91c6d41bc24...
WordPress Canto 1.3.0 Server-Side Request Forgery
Exploit Title: Wordpress Plugin Canto 1.3.0 - Blind SSRF Unauthenticated Date: 03/12/2020 Exploit Author: Pankaj Verma p4nk4j Vendor Homepage: https://www.canto.com/integrations/wordpress/ Software Link: https://github.com/CantoDAM/Canto-Wordpress-Plugin Version: 1.3.0 Tested on: Ubuntu 18.04 CVE...
Wordpress Plugin Canto 1.3.0 - Blind SSRF (Unauthenticated)
Exploit Title: Wordpress Plugin Canto 1.3.0 - Blind SSRF Unauthenticated Date: 03/12/2020 Exploit Author: Pankaj Verma p4nk4j Vendor Homepage: https://www.canto.com/integrations/wordpress/ Software Link: https://github.com/CantoDAM/Canto-Wordpress-Plugin Version: 1.3.0 Tested on: Ubuntu 18.04 CVE...
CVE-2020-28977
The Canto plugin 1.3.0 for WordPress contains blind SSRF vulnerability. It allows an unauthenticated attacker can make a request to any internal and external server via /includes/lib/get.php?subdomain=SSRF...
CVE-2020-28977
The CVE-2020-28977 entry corresponds to the WordPress Canto plugin vulnerability (version 1.3.0). It is a blind Server-Side Request Forgery (SSRF) flaw that allows an unauthenticated attacker to cause requests to internal or external servers by supplying a malicious subdomain parameter in the plu...