Jordan Wright

5 exploits Active since Oct 2020
CVE-2020-24707 WRITEUP HIGH WRITEUP
Gophish <0.11.0 - Info Disclosure
Gophish before 0.11.0 allows the creation of CSV sheets that contain malicious content.
CVSS 7.8
CVE-2020-24708 WRITEUP MEDIUM WRITEUP
Gophish < 0.11.0 - XSS
Cross Site Scripting (XSS) vulnerability in Gophish before 0.11.0 via the Host field on the send profile form.
CVSS 5.4
CVE-2020-24710 WRITEUP MEDIUM WRITEUP
Gophish < 0.11.0 - SSRF
Gophish before 0.11.0 allows SSRF attacks.
CVSS 5.3
CVE-2020-24711 WRITEUP MEDIUM WRITEUP
Gophish < 0.11.0 - Denial of Service
The Reset button on the Account Settings page in Gophish before 0.11.0 allows attackers to cause a denial of service via a clickjacking attack
CVSS 6.5
CVE-2020-24712 WRITEUP MEDIUM WRITEUP
Gophish < 0.11.0 - XSS
Cross Site Scripting (XSS) vulnerability in Gophish before 0.11.0 via the IMAP Host field on the account settings page.
CVSS 5.4