CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

OSV•added 2017/10/19 10:29 p.m.•14 views

CVE-2017-15644

SSRF exists in Webmin 1.850 via the PATHINFO to tunnel/link.cgi, as demonstrated by a GET request for tunnel/link.cgi/http://INTRANET-IP:8000...

8.6CVSS7AI score

Exploits0References4

Prion•added 2017/10/19 10:29 p.m.•22 views

Server side request forgery (ssrf)

SSRF exists in Webmin 1.850 via the PATHINFO to tunnel/link.cgi, as demonstrated by a GET request for tunnel/link.cgi/http://INTRANET-IP:8000...

5CVSS8.4AI score0.13209EPSS

Exploits1References4Affected Software1

Cvelist•added 2017/10/19 10:0 p.m.•16 views

CVE-2017-15644

SSRF exists in Webmin 1.850 via the PATHINFO to tunnel/link.cgi, as demonstrated by a GET request for tunnel/link.cgi/http://INTRANET-IP:8000...

8.6AI score0.13209EPSS

Exploits1References4

CVE•added 2017/10/19 10:0 p.m.•60 views

CVE-2017-15644

Webmin 1.850 is affected by a Server-Side Request Forgery (SSRF) vulnerability exposed via PATH_INFO to tunnel/link.cgi, demonstrated by a GET request for tunnel/link.cgi/http://INTRANET-IP:8000. This yields potential credentialed/internal access exposure as described across multiple sources. Rem...

8.6CVSS8.5AI score0.13209EPSS

Exploits1References4Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by