VYPR
Vendor

Getrebuild

Products
1
CVEs
3
Across products
3
Status
Private

Products

1

Recent CVEs

3
  • CVE-2025-28056CriMay 13, 2025
    risk 0.64cvss 9.8epss 0.00

    rebuild v3.9.0 through v3.9.3 has a SQL injection vulnerability in /admin/admin-cli/exec component.

  • CVE-2024-25294CriMar 20, 2024
    risk 0.59cvss 9.1epss 0.01

    An SSRF issue in REBUILD v.3.5 allows a remote attacker to obtain sensitive information and execute arbitrary code via the FileDownloader.java, proxyDownload,URL parameters.

  • CVE-2022-30049HigMay 15, 2022
    risk 0.49cvss 7.5epss 0.01

    A Server-Side Request Forgery (SSRF) in Rebuild v2.8.3 allows attackers to obtain the real IP address and scan Intranet information via the fileurl parameter.