CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-44677

eladmin v2.7 and before is vulnerable to Server-Side Request Forgery (SSRF) which allows an attacker to execute arbitrary code via the DatabaseController.java component.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 49.8%

CVSS Severity

CVSS v3 Score 9.8

References

https://github.com/elunez/eladmin
https://github.com/jcxj/jcxj/blob/master/source/_posts/eladmin-%E5%A4%8D%E7%8E%B0.md
https://github.com/l1uyi/cve-list/blob/main/cve-list/eladmin-CVE-2024-44676_CVE-2024-44677.md

Products affected by CVE-2024-44677

Eladmin » Eladmin » Version: N/A

cpe:2.3:a:eladmin:eladmin:-
Eladmin » Eladmin » Version: 2.7

cpe:2.3:a:eladmin:eladmin:2.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-44677

Products

Pricing

Contact Us