Urve Web Manager Security Vulnerabilities and Issues — Urve Web Manager CVE List

Lucene search

EveoUrve Web Manager

4 matches found

CVE•added 2022/07/15 6:15 a.m.•53 views

CVE-2022-2419

A vulnerability was found in URVE Web Manager. It has been declared as critical. This vulnerability affects unknown code of the file _internal/collector/upload.php. The manipulation leads to unrestricted upload. Access to the local network is required for this attack to succeed. The exploit has bee...

8CVSS7.9AI score0.01302EPSS

CVE•added 2022/07/15 6:15 a.m.•40 views

CVE-2022-2418

A vulnerability was found in URVE Web Manager. It has been classified as critical. This affects an unknown part of the file kreator.html5/img_upload.php. The manipulation leads to unrestricted upload. Access to the local network is required for this attack. The exploit has been disclosed to the pub...

8CVSS7.9AI score0.0028EPSS

CVE•added 2022/07/15 6:15 a.m.•39 views

CVE-2022-2420

A vulnerability was found in URVE Web Manager. It has been rated as critical. This issue affects some unknown processing of the file _internal/uploader.php. The manipulation leads to unrestricted upload. The attack needs to be approached within the local network. The exploit has been disclosed to t...

8CVSS7.8AI score0.0027EPSS

Web

CVE•added 2025/07/21 6:15 p.m.•8 views

CVE-2025-36845

An issue was discovered in Eveo URVE Web Manager 27.02.2025. The endpoint /_internal/redirect.php allows for Server-Side Request Forgery (SSRF). The endpoint takes a URL as input, sends a request to this address, and reflects the content in the response. This can be used to request endpoints only r...

8.6CVSS7.1AI score0.00058EPSS

Web