CVSS4
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/SC:N/VI:N/SI:N/VA:N/SA:N/AU:Y/U:Green/R:U/V:D/RE:L
AI Score
Confidence
High
EPSS
Percentile
29.5%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Server Side Request Forgery (SSRF) vulnerability in AdmirorFrames Joomla! extension in afGdStream.php script allows to access local files or server pages available only from localhost.Β This issue affects AdmirorFrames: before 5.0.
[
{
"repo": "https://github.com/vasiljevski/admirorframes",
"vendor": "Nikola Vasilijevski",
"product": "AdmirorFrames",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "5.0",
"versionType": "custom"
}
],
"platforms": [
"Joomla!"
],
"collectionURL": "https://www.admiror-design-studio.com/admiror-joomla-extensions/admiror-frames",
"defaultStatus": "unaffected"
}
]
CVSS4
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/SC:N/VI:N/SI:N/VA:N/SA:N/AU:Y/U:Green/R:U/V:D/RE:L
AI Score
Confidence
High
EPSS
Percentile
29.5%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial