Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Mushmush Subscribe
Filtered by product Glastopf
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-10220 1 Mushmush 1 Glastopf 2018-05-24 6.8 MEDIUM 8.8 HIGH
** DISPUTED ** Glastopf 3.1.3-dev has SSRF, as demonstrated by the abc.php a parameter. NOTE: the vendor indicates that this is intentional behavior because the product is a web application honeypot, and modules/handlers/emulators/rfi.py supports Remote File Inclusion emulation.