Lucene search
+L

11 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 5:42 a.m.6 views

CVE-2023-39108

rconfig v3.9.4 was discovered to contain a Server-Side Request Forgery SSRF via the pathb parameter in the doDiff Function of /classes/compareClass.php. This vulnerability allows authenticated attackers to make arbitrary requests via injection of crafted URLs...

8.8CVSS7.5AI score0.02965EPSS
Exploits1References1
NVD
NVD
added 2023/08/01 2:15 p.m.16 views

CVE-2023-39110

rconfig v3.9.4 was discovered to contain a Server-Side Request Forgery SSRF via the path parameter at /ajaxGetFileByPath.php. This vulnerability allows authenticated attackers to make arbitrary requests via injection of crafted URLs...

8.8CVSS8.8AI score0.02746EPSS
Exploits1References1
NVD
NVD
added 2023/08/01 2:15 p.m.18 views

CVE-2023-39109

rconfig v3.9.4 was discovered to contain a Server-Side Request Forgery SSRF via the patha parameter in the doDiff Function of /classes/compareClass.php. This vulnerability allows authenticated attackers to make arbitrary requests via injection of crafted URLs...

8.8CVSS8.8AI score0.02965EPSS
Exploits1References1
Prion
Prion
added 2023/08/01 2:15 p.m.18 views

Server side request forgery (ssrf)

rconfig v3.9.4 was discovered to contain a Server-Side Request Forgery SSRF via the path parameter at /ajaxGetFileByPath.php. This vulnerability allows authenticated attackers to make arbitrary requests via injection of crafted URLs...

6.5CVSS8.7AI score0.02746EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2023/08/01 2:15 p.m.13 views

Server side request forgery (ssrf)

rconfig v3.9.4 was discovered to contain a Server-Side Request Forgery SSRF via the pathb parameter in the doDiff Function of /classes/compareClass.php. This vulnerability allows authenticated attackers to make arbitrary requests via injection of crafted URLs...

6.5CVSS8.7AI score0.02965EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2023/08/01 12:0 a.m.21 views

CVE-2023-39109

rconfig v3.9.4 was discovered to contain a Server-Side Request Forgery SSRF via the patha parameter in the doDiff Function of /classes/compareClass.php. This vulnerability allows authenticated attackers to make arbitrary requests via injection of crafted URLs...

9AI score0.02965EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/08/01 12:0 a.m.20 views

CVE-2023-39108

rconfig v3.9.4 was discovered to contain a Server-Side Request Forgery SSRF via the pathb parameter in the doDiff Function of /classes/compareClass.php. This vulnerability allows authenticated attackers to make arbitrary requests via injection of crafted URLs...

9AI score0.02965EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/08/01 12:0 a.m.33 views

CVE-2023-39110

rconfig v3.9.4 was discovered to contain a Server-Side Request Forgery SSRF via the path parameter at /ajaxGetFileByPath.php. This vulnerability allows authenticated attackers to make arbitrary requests via injection of crafted URLs...

9AI score0.02746EPSS
Exploits1References1
CVE
CVE
added 2023/08/01 12:0 a.m.58 views

CVE-2023-39108

The CVE-2023-39108 entry concerns rconfig v3.9.4, where a Server-Side Request Forgery (SSRF) flaw exists in the path_b parameter of the doDiff function in /classes/compareClass.php. The authenticated attacker can cause the server to fetch arbitrary URLs by injecting crafted URLs, with potential a...

8.8CVSS8.7AI score0.02965EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/08/01 12:0 a.m.9 views

CVE-2023-39110

rconfig v3.9.4 was discovered to contain a Server-Side Request Forgery SSRF via the path parameter at /ajaxGetFileByPath.php. This vulnerability allows authenticated attackers to make arbitrary requests via injection of crafted URLs...

7.5AI score0.02746EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/08/01 12:0 a.m.12 views

CVE-2023-39109

rconfig v3.9.4 was discovered to contain a Server-Side Request Forgery SSRF via the patha parameter in the doDiff Function of /classes/compareClass.php. This vulnerability allows authenticated attackers to make arbitrary requests via injection of crafted URLs...

7.5AI score0.02965EPSS
Exploits1References1
Rows per page
Query Builder