Trms Tightrope Media Carousel — known CVE vulnerabilities
Every CVE whose affected-product data names Trms Tightrope Media Carousel, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2019-13020 — CVSS 10.0 (critical): The fetch API in Tightrope Media Carousel before 7.1.3 has CarouselAPI/v0/fetch?url= SSRF. This has two potential areas for abuse. First, a…