CVE-2024-3448

Published: Apr 10, 2024Modified: Nov 21, 2024

5.0

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N

Exploitability: 3.1 / Impact: 1.4

Source: vulnerability@ncsc.ch (Secondary)

Description

Users with low privileges can perform certain AJAX actions. In this vulnerability instance, improper access to ajax?action=plugin:focus:checkIframeAvailability leads to a Server-Side Request Forgery by analyzing the error messages returned from the back-end. Allowing an attacker to perform a port scan in the back-end. At the time of publication of the CVE no patch is available.

Related CWEs

CWE-918

Server-Side Request Forgery (SSRF)

The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.

References (2)

https://huntr.com/bounties/4d72d300-92d6-4e3c-93d8-52fe47396ae0

Source: vulnerability@ncsc.ch

https://huntr.com/bounties/4d72d300-92d6-4e3c-93d8-52fe47396ae0

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.