EUVD-2018-1856

Malware in sbrugna...

CVE-2018-1000138

I, Librarian version 4.8 and earlier contains a SSRF vulnerability in "url" parameter of getFromWeb in functions.php that can result in the attacker abusing functionality on the server to read or update internal resources...

Scilico I, Librarian server-side request forgery vulnerability (CNVD-2018-06447)

Scilico I, Librarian is the United States Scilico company a set of online PDF document management system. A security vulnerability exists in the 'url' parameter of getFromWeb in the functions.php file in Scilico I, Librarian 4.8 and earlier versions. An attacker can exploit this vulnerability to...

Server side request forgery (ssrf)

I, Librarian version 4.8 and earlier contains a SSRF vulnerability in "url" parameter of getFromWeb in functions.php that can result in the attacker abusing functionality on the server to read or update internal resources...

CVE-2018-1000138

I, Librarian version 4.8 and earlier contains a SSRF vulnerability in "url" parameter of getFromWeb in functions.php that can result in the attacker abusing functionality on the server to read or update internal resources...