Server-Side Request Forgery (SSRF) Vulnerability in Qualitor v8.24
CVE-2024-48360

Currently unrated

Key Information:

Vendor: Qualitor
Vendor: CVE Published:; 31 October 2024

Badges

👾 Exploit Exists🟡 Public PoC🟣 EPSS 70%

What is CVE-2024-48360?

Qualitor v8.24 was discovered to contain a Server-Side Request Forgery (SSRF) via the component /request/viewValidacao.php.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2024-48360
Created by OpenXP-Research

References

https://www.qualitor.com.br/qualitor-8-20

https://github.com/OpenXP-Research/CVE-2024-48360

EPSS Score

70% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 31, 2024
🟡
Public PoC available
Oct 30, 2024
👾
Exploit known to exist
Oct 30, 2024