Vulnerabilities > Canto
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-09 | CVE-2022-40305 | Server-Side Request Forgery (SSRF) vulnerability in Canto A Server-Side Request Forgery issue in Canto Cumulus through 11.1.3 allows attackers to enumerate the internal network, overload network resources, and possibly have unspecified other impact via the server parameter to the /cwc/login login form. | 9.8 |
| 2020-11-30 | CVE-2020-28978 | Server-Side Request Forgery (SSRF) vulnerability in Canto 1.3.0 The Canto plugin 1.3.0 for WordPress contains blind SSRF vulnerability. | 5.3 |
| 2020-11-30 | CVE-2020-28977 | Server-Side Request Forgery (SSRF) vulnerability in Canto 1.3.0 The Canto plugin 1.3.0 for WordPress contains blind SSRF vulnerability. | 5.3 |
| 2020-11-30 | CVE-2020-28976 | Server-Side Request Forgery (SSRF) vulnerability in Canto 1.3.0 The Canto plugin 1.3.0 for WordPress contains a blind SSRF vulnerability. | 5.3 |
| 2020-11-10 | CVE-2020-24063 | Server-Side Request Forgery (SSRF) vulnerability in Canto 1.3.0 The Canto plugin 1.3.0 for WordPress allows includes/lib/download.php?subdomain= SSRF. | 7.2 |