CVE-2024-55086

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-55086

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-55086.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2024-55086

Published

2024-12-18T17:15:14Z

Modified

2025-06-19T03:59:05.383543Z

Summary

[none]

Details

In the GetSimple CMS CE 3.3.19 management page, Server-Side Request Forgery (SSRF) can be achieved in the plug-in download address in the backend management system.

References

https://getsimple-ce.ovh/
https://tasteful-stamp-da4.notion.site/CVE-2024-55086-15b1e0f227cb80e4bf4ed76aac53f795

Affected packages

Git / github.com/getsimplecms-ce/getsimplecms-ce

Affected ranges

Type: GIT
Repo: https://github.com/getsimplecms-ce/getsimplecms-ce
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

ae72a6d8d6cf9247b5a3f197232351eb8432ce1b

Affected versions

v3.*

v3.3.16

v3.3.17

v3.3.18

v3.3.18.1

v3.3.19.1

v3.3.19.1b