Skip to main content

Canvas Learning Management Service

1 CVEs product

Monthly

CVE-2020-5775 MEDIUM POC This Month

Server-Side Request Forgery in Canvas LMS 2020-07-29 allows a remote, unauthenticated attacker to cause the Canvas application to perform HTTP GET requests to arbitrary domains. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SSRF Canvas Learning Management Service
NVD
CVSS 3.1
5.8
EPSS
6.5%
EPSS 7% CVSS 5.8
MEDIUM POC This Month

Server-Side Request Forgery in Canvas LMS 2020-07-29 allows a remote, unauthenticated attacker to cause the Canvas application to perform HTTP GET requests to arbitrary domains. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SSRF Canvas Learning Management Service
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy