renmizo

2 exploits Active since Nov 2022
CVE-2022-41412 NOMISEC HIGH WRITEUP
perfsonar < 4.4.5 - Server-Side Request Forgery via graphData.cgi
An issue in the graphData.cgi component of perfSONAR v4.4.5 and prior allows attackers to access sensitive data and execute Server-Side Request Forgery (SSRF) attacks.
1 stars
CVSS 8.6
CVE-2022-41413 NOMISEC MEDIUM WRITEUP
perfSONAR 4.0-4.4.5 - Cross-Site Request Forgery via Search Function
perfSONAR v4.x <= v4.4.5 was discovered to contain a Cross-Site Request Forgery (CSRF) which is triggered when an attacker injects crafted input into the Search function.
CVSS 4.3