📦 Openbmcs

OpenBMCS 2.4 contains an unauthenticated directory listing vulnerability that allows attackers to browse sensitive directories and access configuration files, database credentials, and system informat...

OpenBMCS 2.4 contains an unauthenticated Server-Side Request Forgery (SSRF) vulnerability that allows attackers to force the application to make HTTP requests to arbitrary internal or external systems...

CVE-2021-47701 is a privilege escalation vulnerability in OpenBMCS 2.4 that allows authenticated users with read-only permissions to elevate their privileges to administrative level. Attackers exploit...

OpenBMCS 2.4 contains an SQL injection vulnerability in the /debug/obix_test.php endpoint that allows authenticated attackers to execute arbitrary SQL commands. This enables attackers to read, modify,...

OpenBMCS 2.4 contains a CSRF vulnerability in the sendFeedback.php endpoint that allows attackers to trick authenticated administrators into performing unintended actions. This could lead to unauthori...