ГлавнаяУязвимости → CVE-2024-5736
7.5высокая

CVE-2024-5736

Описание

Server Side Request Forgery (SSRF) vulnerability in AdmirorFrames Joomla! extension in afGdStream.php script allows to access local files or server pages available only from localhost. This issue affects AdmirorFrames: before 5.0.

Затрагиваемое ПО
Admiror-design-studio Admirorframes
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Источники
https://cert.pl/en/posts/2024/06/CVE-2024-5735/https://cert.pl/posts/2024/06/CVE-2024-5735/https://github.com/afine-com/CVE-2024-5736https://github.com/sectroyer/CVEs/tree/main/CVE-2024-5736https://github.com/vasiljevski/admirorframes/issues/3https://cert.pl/en/posts/2024/06/CVE-2024-5735/https://cert.pl/posts/2024/06/CVE-2024-5735/https://github.com/afine-com/CVE-2024-5736