Vulnerability Details CVE-2024-40543
PublicCMS v4.0.202302.e was discovered to contain a Server-Side Request Forgery (SSRF) via the component /admin/ueditor?action=catchimage.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 31.8%
CVSS Severity
CVSS v3 Score 8.8
References
Products affected by CVE-2024-40543
-
cpe:2.3:a:publiccms:publiccms:4.0
-
cpe:2.3:a:publiccms:publiccms:4.0.180707
-
cpe:2.3:a:publiccms:publiccms:4.0.180825
-
cpe:2.3:a:publiccms:publiccms:4.0.181024
-
cpe:2.3:a:publiccms:publiccms:4.0.190312
-
cpe:2.3:a:publiccms:publiccms:4.0.202004
-
cpe:2.3:a:publiccms:publiccms:4.0.202011
-
cpe:2.3:a:publiccms:publiccms:4.0.202011.b
-
cpe:2.3:a:publiccms:publiccms:4.0.202107
-
cpe:2.3:a:publiccms:publiccms:4.0.202107.b
-
cpe:2.3:a:publiccms:publiccms:4.0.202107.c
-
cpe:2.3:a:publiccms:publiccms:4.0.202107.d
-
cpe:2.3:a:publiccms:publiccms:4.0.202107.f
-
cpe:2.3:a:publiccms:publiccms:4.0.202204.a
-
cpe:2.3:a:publiccms:publiccms:4.0.202204.b
-
cpe:2.3:a:publiccms:publiccms:4.0.202204.c
-
cpe:2.3:a:publiccms:publiccms:4.0.202204.d
-
cpe:2.3:a:publiccms:publiccms:4.0.202302.a
-
cpe:2.3:a:publiccms:publiccms:4.0.202302.b
-
cpe:2.3:a:publiccms:publiccms:4.0.202302.c
-
cpe:2.3:a:publiccms:publiccms:4.0.202302.d
-
cpe:2.3:a:publiccms:publiccms:4.0.202302.e