Auto Generated CVE annotations [Tue May 24 09:52:52 UTC 2022] 🤖

patch-1
GitHub Action 2022-05-24 09:52:52 +00:00
parent 04ec54ed48
commit c72decfdc8
2 changed files with 5 additions and 4 deletions

View File

@ -3,15 +3,15 @@ id: CVE-2017-12138
info:
name: XOOPS Core 2.5.8 - Open Redirect
author: 0x_Akoko
severity: low
severity: medium
description: XOOPS Core 2.5.8 has a stored URL redirect bypass vulnerability in /modules/profile/index.php because of the URL filter.
reference:
- https://github.com/XOOPS/XoopsCore25/issues/523
- https://xoops.org
- https://www.cvedetails.com/cve/CVE-2017-12138
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
cvss-score: 6.10
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
cvss-score: 6.1
cve-id: CVE-2017-12138
cwe-id: CWE-601
tags: cve,cve2017,redirect,xoops,authenticated

View File

@ -10,9 +10,10 @@ info:
- https://medium.com/@bhattronit96/cve-2022-30776-cd34f977c2b9
- https://www.atmail.com/
- https://nvd.nist.gov/vuln/detail/CVE-2022-30776
- https://help.atmail.com/hc/en-us/sections/115003283988
metadata:
verified: true
shodan-query: http.html:"atmail"
verified: "true"
tags: cve,cve2022,atmail,xss
requests: