CVE-2024-33832
Severity CVSS v4.0:
Pending analysis
Type:
CWE-918
Server-Side Request Forgery (SSRF)
Publication date:
30/04/2024
Last modified:
03/07/2024
Description
OneNav v0.9.35-20240318 was discovered to contain a Server-Side Request Forgery (SSRF) via the component /index.php?c=api&method=get_link_info.
Impact
Base Score 3.x
6.30
Severity 3.x
MEDIUM