Tightrope Media Carousel
1 CVEs
product
Monthly
The fetch API in Tightrope Media Carousel before 7.1.3 has CarouselAPI/v0/fetch?url= SSRF. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
SSRF
Tightrope Media Carousel
NVD
CVSS 3.0
10.0
EPSS
1.1%
EPSS 1%
CVSS 10.0
CRITICAL
Act Now
The fetch API in Tightrope Media Carousel before 7.1.3 has CarouselAPI/v0/fetch?url= SSRF. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
SSRF
Tightrope Media Carousel
NVD