Ryan Moore

CVE-2022-41412 NOMISEC HIGH WRITEUP

perfSONAR <4.4.5 - SSRF

An issue in the graphData.cgi component of perfSONAR v4.4.5 and prior allows attackers to access sensitive data and execute Server-Side Request Forgery (SSRF) attacks.

1 stars

CVSS 8.6

View Code

CVE-2022-41413 NOMISEC MEDIUM WRITEUP

perfSONAR <4.4.5 - CSRF

perfSONAR v4.x <= v4.4.5 was discovered to contain a Cross-Site Request Forgery (CSRF) which is triggered when an attacker injects crafted input into the Search function.

CVSS 4.3

View Code

CVE-2022-41413 EXPLOITDB MEDIUM text WRITEUP

perfSONAR <4.4.5 - CSRF

perfSONAR v4.x <= v4.4.5 was discovered to contain a Cross-Site Request Forgery (CSRF) which is triggered when an attacker injects crafted input into the Search function.

CVSS 4.3

View Code