Lucene search
K

5 matches found

GithubExploit
GithubExploit
added 2024/03/07 6:35 a.m.680 views

Exploit for Server-Side Request Forgery in Fusion_Builder_Project Fusion_Builder

git clone https://github.com/s...

9.8CVSS9.5AI score0.71722EPSS
Exploits6
Circl
Circl
added 2023/03/10 1:47 p.m.71 views

CVE-2022-1386

creationtimestamp| type| source ---|---|--- 2023-03-10 13:47:05+00:00| published-proof-of-concept| https://t.me/DailyToolz/660 2023-03-10 18:42:57+00:00| published-proof-of-concept| https://t.me/DailyToolz/658 2024-01-09 07:23:02+00:00| seen| https://t.me/arpsyndicate/2725 2025-01-26...

9.8CVSS7.3AI score0.71722EPSS
In wildExploits6References6
OSV
OSV
added 2022/05/16 3:15 p.m.2 views

CVE-2022-1386

The Fusion Builder WordPress plugin before 3.6.2, used in the Avada theme, does not validate a parameter in its forms which could be used to initiate arbitrary HTTP requests. The data returned is then reflected back in the application's response. This could be used to interact with hosts on the...

9.8CVSS7.4AI score0.71722EPSS
Exploits6References3
CVE
CVE
added 2022/05/16 2:30 p.m.560 views

CVE-2022-1386

CVE-2022-1386 : The WordPress Fusion Builder plugin (before 3.6.2) used with the Avada theme is vulnerable to a server-side request forgery (SSRF). The plugin does not validate a parameter in its forms, allowing an attacker to initiate arbitrary HTTP requests, with the response echoed back to the...

9.8CVSS9.2AI score0.71722EPSS
In wildExploits6References3Affected Software2
Cvelist
Cvelist
added 2022/05/16 2:30 p.m.31 views

CVE-2022-1386 Fusion Builder < 3.6.2 - Unauthenticated SSRF

The Fusion Builder WordPress plugin before 3.6.2, used in the Avada theme, does not validate a parameter in its forms which could be used to initiate arbitrary HTTP requests. The data returned is then reflected back in the application's response. This could be used to interact with hosts on the...

9.4AI score0.71722EPSS
Exploits6References3
Rows per page
Query Builder