BIT-seopanel-2024-22648

See a problem?

Import Source

https://github.com/bitnami/vulndb/tree/main/data/seopanel/BIT-seopanel-2024-22648.json

JSON Data

https://api.osv.dev/v1/vulns/BIT-seopanel-2024-22648

Aliases

CVE-2024-22648

Published

2024-03-06T11:04:38.195Z

Modified

2024-03-06T11:25:28.861Z

Summary

[none]

Details

A Blind SSRF vulnerability exists in the "Crawl Meta Data" functionality of SEO Panel version 4.10.0. This makes it possible for remote attackers to scan ports in the local environment.

Database specific

{
    "cpes": [
        "cpe:2.3:a:seopanel:seo_panel:4.10.0:*:*:*:*:*:*:*"
    ],
    "severity": "Medium"
}

References

https://github.com/cassis-sec/CVE/tree/main/2024/CVE-2024-22648

Affected packages

Bitnami / seopanel

Package

Name: seopanel
Purl: pkg:bitnami/seopanel

Severity

5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS Calculator

Affected ranges

Type: SEMVER
Events: Introduced

4.10.0

Last affected

4.10.0