إرسال #299169: EasyAdmin EasyAdmin lastest File Upload, XXE and SSRF Vulnerabilityالمعلومات

عنوانEasyAdmin EasyAdmin lastest File Upload, XXE and SSRF Vulnerability
الوصفThe vulnerability is located at /ureport/designer/saveReportFile, where we can conduct File Upload, XXE, and SSRF attacks.
المصدر⚠️ https://gitee.com/lakernote/easy-admin/issues/I98ZTA
المستخدم
 Southseast (UID 65123)
ارسال15/03/2024 02:45 PM (2 سنوات منذ)
الاعتدال22/03/2024 11:50 AM (7 days later)
الحالةتمت الموافقة
إدخال VulDB257717 [lakernote EasyAdmin حتى 20240315 saveReportFile تجاوز الصلاحيات]
النقاط14

Do you need the next level of professionalism?

Upgrade your account now!