Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 8:23 p.m.8 views

CVE-2022-31132

Nextcloud Mail is an email application for the nextcloud personal cloud product. Affected versions shipped with a CSS minifier on the path ./vendor/cerdic/css-tidy/cssoptimiser.php. Access to the minifier is unrestricted and access may lead to Server-Side Request Forgery SSRF. It is recommendet t...

9.8CVSS6.8AI score0.00616EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/08/04 5:10 p.m.39 views

CVE-2022-31132 Unauthenticated SSRF in 3rd party module "cerdic/csstidy"

Nextcloud Mail is an email application for the nextcloud personal cloud product. Affected versions shipped with a CSS minifier on the path ./vendor/cerdic/css-tidy/cssoptimiser.php. Access to the minifier is unrestricted and access may lead to Server-Side Request Forgery SSRF. It is recommendet t...

8.3CVSS9.8AI score0.00616EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/08/04 5:10 p.m.6 views

CVE-2022-31132 Unauthenticated SSRF in 3rd party module "cerdic/csstidy"

Nextcloud Mail is an email application for the nextcloud personal cloud product. Affected versions shipped with a CSS minifier on the path ./vendor/cerdic/css-tidy/cssoptimiser.php. Access to the minifier is unrestricted and access may lead to Server-Side Request Forgery SSRF. It is recommendet t...

8.3CVSS9.5AI score0.00616EPSS
Exploits0References1
CVE
CVE
added 2022/08/04 5:10 p.m.96 views

CVE-2022-31132

The CVE-2022-31132 issue affects Nextcloud Mail where versions shipped with the CSS minifier at ./vendor/cerdic/css-tidy/css_optimiser.php expose an unrestricted interface, enabling unauthenticated SSRF. Affected software is Nextcloud Mail; impact is described as Server-Side Request Forgery with ...

9.8CVSS9.2AI score0.00616EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder