Lucene search
+L

4 matches found

Circl
Circl
added 2024/11/14 6:7 a.m.10 views

CVE-2020-28978

creationtimestamp| type| source ---|---|--- 2024-11-14 06:07:24+00:00| seen| MISP/3fd85816-8f91-4c22-adc9-6b12fba7962c...

5.3CVSS6.8AI score0.15254EPSS
Exploits3
Packet Storm
Packet Storm
added 2020/12/04 12:0 a.m.815 views

WordPress Canto 1.3.0 Server-Side Request Forgery

Exploit Title: Wordpress Plugin Canto 1.3.0 - Blind SSRF Unauthenticated Date: 03/12/2020 Exploit Author: Pankaj Verma p4nk4j Vendor Homepage: https://www.canto.com/integrations/wordpress/ Software Link: https://github.com/CantoDAM/Canto-Wordpress-Plugin Version: 1.3.0 Tested on: Ubuntu 18.04 CVE...

5CVSS1.1AI score0.27771EPSS
Exploits3
Exploit DB
Exploit DB
added 2020/12/04 12:0 a.m.874 views

Wordpress Plugin Canto 1.3.0 - Blind SSRF (Unauthenticated)

Exploit Title: Wordpress Plugin Canto 1.3.0 - Blind SSRF Unauthenticated Date: 03/12/2020 Exploit Author: Pankaj Verma p4nk4j Vendor Homepage: https://www.canto.com/integrations/wordpress/ Software Link: https://github.com/CantoDAM/Canto-Wordpress-Plugin Version: 1.3.0 Tested on: Ubuntu 18.04 CVE...

5.3CVSS5.2AI score0.27771EPSS
Exploits3
CVE
CVE
added 2020/11/30 1:21 p.m.66 views

CVE-2020-28978

CVE-2020-28978 affects WordPress Canto Plugin 1.3.0, with a blind SSRF due to lack of validation of the subdomain parameter in several endpoints (e.g., includes/lib/tree.php?subdomain=). Unauthenticated attackers can make requests to internal or external servers via the subdomain parameter. The C...

5.3CVSS5.3AI score0.15254EPSS
Exploits3References5Affected Software1
Rows per page
Query Builder