CVE-2024-5736 Information

Description

Server Side Request Forgery (SSRF) vulnerability in AdmirorFrames Joomla! extension in afGdStream.php script allows to access local files or server pages available only from localhost. This issue affects AdmirorFrames: before 5.0.

Reference

https://cert.pl/en/posts/2024/06/CVE-2024-5735/ https://cert.pl/posts/2024/06/CVE-2024-5735/ https://github.com/vasiljevski/admirorframes/issues/3 https://github.com/sectroyer/CVEs/tree/main/CVE-2024-5736 https://github.com/afine-com/CVE-2024-5736