Vulnerabilities > Trms > Tightrope Media Carousel

DATE CVE VULNERABILITY TITLE RISK
2019-08-26 CVE-2019-13020 Server-Side Request Forgery (SSRF) vulnerability in Trms Tightrope Media Carousel
The fetch API in Tightrope Media Carousel before 7.1.3 has CarouselAPI/v0/fetch?url= SSRF.
network
low complexity
trms CWE-918
critical
 10.0
10