Vulnerability Details CVE-2021-27693
Server-side Request Forgery (SSRF) vulnerability in PublicCMS before 4.0.202011.b via /publiccms/admin/ueditor when the action is catchimage.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 29.5%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2021-27693
-
cpe:2.3:a:publiccms:publiccms:4.0
-
cpe:2.3:a:publiccms:publiccms:4.0.180707
-
cpe:2.3:a:publiccms:publiccms:4.0.180825
-
cpe:2.3:a:publiccms:publiccms:4.0.181024
-
cpe:2.3:a:publiccms:publiccms:4.0.190312
-
cpe:2.3:a:publiccms:publiccms:4.0.202004
-
cpe:2.3:a:publiccms:publiccms:4.0.202011