CVE-2024-55086

Published: Dic 18, 2024 Last Modified: Apr 18, 2025 EU-VD ID: EUVD-2024-52739
ExploitDB:
Other exploit source:
Google Dorks:
HIGH 7,2
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0
Attack Vector: network
Attack Complexity: low
Privileges Required: high
User Interaction: none
Scope: unchanged
Confidentiality: high
Integrity: high
Availability: high

Description

AI Translation Available

In the GetSimple CMS CE 3.3.19 management page, Server-Side Request Forgery (SSRF) can be achieved in the plug-in download address in the backend management system.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score
0,0017
Percentile
0,4th
Updated

EPSS Score Trend (Last 90 Days)

918

Server-Side Request Forgery (SSRF)

Incomplete
Abstraction: Base Structure: Simple
Common Consequences
Security Scopes Affected:
Confidentiality Integrity Access Control
Potential Impacts:
Read Application Data Execute Unauthorized Code Or Commands Bypass Protection Mechanism
Applicable Platforms
Technologies: AI/ML, Web Based, Web Server
View CWE Details
Application

Getsimple Cms by Getsimple-Ce

Product Information
Vendor Getsimple-Ce
Product Getsimple Cms
Version 3.3.19
cpe:2.3:a:getsimple-ce:getsimple_cms:3.3.19:*:*:*:community:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://tasteful-stamp-da4.notion.site/CVE-2024-55086-15b1e…
Broken Link
https://tasteful-stamp-da4.notion.site/CVE-2024-55086-15b1e0f227cb80e4bf4ed76aa…
https://getsimple-ce.ovh/
Product
https://getsimple-ce.ovh/
https://tasteful-stamp-da4.notion.site/CVE-2024-55086-15b1e…
Broken Link
https://tasteful-stamp-da4.notion.site/CVE-2024-55086-15b1e0f227cb80e4bf4ed76aa…