{"id":"CVE-2018-14728","details":"upload.php in Responsive FileManager 9.13.1 allows SSRF via the url parameter.","modified":"2026-03-14T09:27:49.546402Z","published":"2018-08-03T18:29:00.657Z","references":[{"type":"EVIDENCE","url":"http://packetstormsecurity.com/files/148742/Responsive-Filemanager-9.13.1-Server-Side-Request-Forgery.html"},{"type":"EVIDENCE","url":"https://www.exploit-db.com/exploits/45103/"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/trippo/responsivefilemanager","events":[{"introduced":"0"},{"last_affected":"c26a818d5d68cb218834608613306c894b6399ac"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"9.13.1"}]}}],"versions":["9.9","9.9.1","9.9.2","9.9.4","v.9.10.1","v9.10.0","v9.10.1","v9.10.2","v9.11.0","v9.11.3","v9.12.0","v9.12.1","v9.12.2","v9.13.0","v9.13.1","v9.9.3","v9.9.4","v9.9.5","v9.9.6","v9.9.7"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-14728.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}