CVE-2024-5736
CVSS V2 None
CVSS V3 None
Description
Server Side Request Forgery (SSRF) vulnerability in AdmirorFrames Joomla! extension in afGdStream.php script allows to access local files or server pages available only from localhost. This issue affects AdmirorFrames: before 5.0.
Overview
- CVE ID
- CVE-2024-5736
- Assigner
- CERT-PL
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-06-28T11:26:53.512Z
- Last Modified Date
- 2024-06-28T20:15:34.356Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://cert.pl/en/posts/2024/06/CVE-2024-5735/ | third-party-advisory |
| https://cert.pl/posts/2024/06/CVE-2024-5735/ | third-party-advisory |
| https://github.com/vasiljevski/admirorframes/issues/3 | issue-tracking |
| https://github.com/sectroyer/CVEs/tree/main/CVE-2024-5736 | technical-description |
| https://github.com/afine-com/CVE-2024-5736 | technical-description |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-5736 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5736 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-29 13:04:31 | Added to TrackCVE |