| عنوان | 60IndexPage 60IndexPage <=v1.8.5 SSRF |
|---|
| الوصف | The 60IndexPage system, specifically in the file /include/file.php, contains a Pre-Authentication Server-Side Request Forgery (SSRF) vulnerability. The flaw resides in the fact that the system accepts a URL parameter and downloads from it without proper validation, thereby allowing an attacker to manipulate the request to read local files or send raw TCP packets. This vulnerability, which affects versions up to and including v1.8.5, can be exploited to gain unauthorized access to internal systems or data, posing a significant security risk. |
|---|
| المصدر | ⚠️ https://note.zhaoj.in/share/7F54gy22y7uJ |
|---|
| المستخدم | glzjin (UID 59815) |
|---|
| ارسال | 19/01/2024 08:47 AM (2 سنوات منذ) |
|---|
| الاعتدال | 26/01/2024 01:44 PM (7 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 252189 [60IndexPage حتى 1.8.5 Parameter /include/file.php url تجاوز الصلاحيات] |
|---|
| النقاط | 20 |
|---|