| Titel | VIP-video-analysis system exists in SSRF vulnerability unauthorized in data/title.php |
|---|
| Beschreibung | The reason for the formation of SSRF is mostly due to the server providing the function of obtaining data from other server applications without filtering and restricting the target address. For example, obtaining web page text content from a specified URL address, loading images from the specified address, downloading, and so on. The system has an SSRF vulnerability in data/title.php |
|---|
| Quelle | ⚠️ https://github.com/Xor-Gerke/webray.com.cn/blob/main/cve/VIP-video-analysis/SSRF.md |
|---|
| Benutzer | webray.com.cn (UID 24778) |
|---|
| Einreichung | 31.05.2023 11:59 (vor 3 Jahren) |
|---|
| Moderieren | 31.05.2023 15:04 (3 hours later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 230359 [yiwent Vip Video Analysis 1.0 data/title.php titurl erweiterte Rechte] |
|---|
| Punkte | 19 |
|---|