CVE-2016-9752 in Serendipityinformation

Résumé

par MITRE

In Serendipity before 2.0.5, an attacker can bypass SSRF protection by using a malformed IP address (e.g., http://127.1) or a 30x (aka Redirection) HTTP status code.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Réserver

01/12/2016

Divulgation

01/12/2016

Modérer

accepté

Entrée

VDB-93925

CPE

prêt

EPSS

0.00185

KEV

non

Activités

très faible

Secteur

Hostingprovider, Agriculture, ...

Sources

MITREhttps://www.cve.org/CVERecord?id=CVE-2016-9752
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2016-9752
CVE Detailshttps://www.cvedetails.com/cve/CVE-2016-9752/

PrécédentAperçuSuivant

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!