RSS   Vulnerabilities for 'Canto'   RSS

2020-11-30
 
CVE-2020-28978

CWE-918
 

 
The Canto plugin 1.3.0 for WordPress contains blind SSRF vulnerability. It allows an unauthenticated attacker can make a request to any internal and external server via /includes/lib/tree.php?subdomain=SSRF.

 
 
CVE-2020-28977

CWE-918
 

 
The Canto plugin 1.3.0 for WordPress contains blind SSRF vulnerability. It allows an unauthenticated attacker can make a request to any internal and external server via /includes/lib/get.php?subdomain=SSRF.

 
 
CVE-2020-28976

CWE-918
 

 
The Canto plugin 1.3.0 for WordPress contains a blind SSRF vulnerability. It allows an unauthenticated attacker can make a request to any internal and external server via /includes/lib/detail.php?subdomain=SSRF.

 

 >>> Vendor: Canto 2 Products
Canto curses
Canto


Copyright 2024, cxsecurity.com

 

Back to Top