admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-30 02:00:53 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2024/CVE-2024-275xx/CVE-2024-27561.json

25 lines
1.0 KiB
JSON
Raw Normal View History

Auto-Update: 2024-03-05T19:00:25.615578+00:00
2024-03-05 19:00:29 +00:00
{
"id": "CVE-2024-27561",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-03-05T17:15:06.887",
"lastModified": "2024-03-05T18:50:18.333",
"vulnStatus": "Awaiting Analysis",
Auto-Update: 2024-07-14T02:00:17.787041+00:00
2024-07-14 02:06:08 +00:00
"cveTags": [],
Auto-Update: 2024-03-05T19:00:25.615578+00:00
2024-03-05 19:00:29 +00:00
"descriptions": [
{
"lang": "en",
"value": "A Server-Side Request Forgery (SSRF) in the installUpdateThemePluginAction function of WonderCMS v3.1.3 allows attackers to force the application to make arbitrary requests via injection of crafted URLs into the installThemePlugin parameter."
Auto-Update: 2024-04-04T08:42:25.815847+00:00
2024-04-04 08:46:00 +00:00
},
{
"lang": "es",
"value": "Server-Side Request Forgery (SSRF) en la funci\u00f3n installUpdateThemePluginAction de WonderCMS v3.1.3 permite a los atacantes forzar a la aplicaci\u00f3n a realizar solicitudes arbitrarias mediante la inyecci\u00f3n de URL manipuladas en el par\u00e1metro installThemePlugin."
Auto-Update: 2024-03-05T19:00:25.615578+00:00
2024-03-05 19:00:29 +00:00
}
],
"metrics": {},
"references": [
{
"url": "https://github.com/zer0yu/CVE_Request/blob/master/WonderCMS/wondercms_installUpdateThemePluginAction_plugins.md",
"source": "cve@mitre.org"
}
]
}
Reference in New Issue Copy Permalink