Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

31 matches found

Microsoft CVE
Microsoft CVEadded 2022/03/16 7:0 a.m.2 views

A flaw was found in Ansible Engine's ansible-connection module where sensitive information such as the Ansible user credentials is disclosed by default in the traceback error message. The highest threat from this vulnerability is to confidentiality.

...

5.5CVSS7.5AI score0.0029EPSS
Exploits0
Github Security Blog
Github Security Blogadded 2021/04/07 9:13 p.m.47 views

SSRF attacks via tracebacks in Plone

Plone before 5.2.3 allows SSRF attacks via the tracebacks feature only available to the Manager role...

8.8CVSS8.3AI score0.00484EPSS
Exploits0References6Affected Software5
OSV
OSVadded 2021/04/07 9:13 p.m.22 views

GHSA-X7WF-5MJC-6X76 SSRF attacks via tracebacks in Plone

Plone before 5.2.3 allows SSRF attacks via the tracebacks feature only available to the Manager role...

8.8CVSS8.6AI score0.00484EPSS
Exploits0References6
OpenVAS
OpenVASadded 2021/01/15 12:0 a.m.13 views

Plone CMS < 5.2.3 Multiple Vulnerabilities

Plone CMS is prone to multiple vulnerabilities. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS7AI score0.00484EPSS
Exploits0References2
NVD
NVDadded 2020/12/30 7:15 p.m.9 views

CVE-2020-28735

Plone before 5.2.3 allows SSRF attacks via the tracebacks feature only available to the Manager role...

8.8CVSS8.6AI score0.00484EPSS
Exploits0References3
OSV
OSVadded 2020/12/30 7:15 p.m.13 views

CVE-2020-28735

Plone before 5.2.3 allows SSRF attacks via the tracebacks feature only available to the Manager role...

8.8CVSS7.1AI score
Exploits0References3
PyPA
PyPAadded 2020/12/30 7:15 p.m.4 views

PYSEC-2020-247

Plone before 5.2.3 allows SSRF attacks via the tracebacks feature only available to the Manager role...

8.8CVSS7AI score0.00484EPSS
Exploits0References4Affected Software1
OSV
OSVadded 2020/12/30 7:15 p.m.15 views

PYSEC-2020-247

Plone before 5.2.3 allows SSRF attacks via the tracebacks feature only available to the Manager role...

8.8CVSS3.7AI score0.00484EPSS
Exploits0References4
Prion
Prionadded 2020/12/30 7:15 p.m.15 views

Server side request forgery (ssrf)

Plone before 5.2.3 allows SSRF attacks via the tracebacks feature only available to the Manager role...

6.5CVSS8.6AI score0.00484EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2020/12/30 6:38 p.m.89 views

CVE-2020-28735

CVE-2020-28735 affects Plone versions before 5.2.3, where the tracebacks feature (accessible to the Manager role) enables SSRF attacks. The issue is described across multiple sources as a vulnerability in Plone prior to 5.2.3 that allows server-side request forgery via tracebacks. Remediation is ...

8.8CVSS8.5AI score0.00484EPSS
Exploits0References3Affected Software1
RedHat Linux
RedHat Linuxadded 2019/09/20 12:4 p.m.242 views

Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 7.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.8CVSS6.6AI score0.0184EPSS
Exploits1References3
Rows per page
Query Builder