CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

RedhatCVE•added 2025/05/23 6:42 a.m.•2 views

CVE-2024-45186

FileSender before 2.49 allows server-side template injection SSTI for retrieving credentials...

9.8CVSS7.3AI score0.00162EPSS

Exploits0References1

NVD•added 2024/10/02 5:15 a.m.•7 views

CVE-2024-45186

FileSender before 2.49 allows server-side template injection SSTI for retrieving credentials...

9.8CVSS0.00162EPSS

Exploits0References1

CNNVD•added 2024/10/02 12:0 a.m.•2 views

FileSender 安全漏洞

FileSender is an open source web application from FileSender that allows authenticated users to securely and easily send arbitrarily large files to other users. A security vulnerability exists in FileSender versions prior to 2.49, which stems from the presence of server-side template injection th...

9.8CVSS7AI score0.00162EPSS

Exploits0References2

Vulnrichment•added 2024/10/02 12:0 a.m.•9 views

CVE-2024-45186

FileSender before 2.49 allows server-side template injection SSTI for retrieving credentials...

7.3AI score0.00162EPSS

Exploits0References1

CVE•added 2024/10/02 12:0 a.m.•41 views

CVE-2024-45186

CVE-2024-45186 affects FileSender prior to 2.49. The issue is a server‑side template injection (SSTI) in the template processing function, enabling retrieval of credentials. Affected component is the server’s template handling within FileSender; root cause is unsafely processed templates allowing...

9.8CVSS7.3AI score0.00162EPSS

Exploits0References1