Submit #299169: EasyAdmin EasyAdmin lastest File Upload, XXE and SSRF Vulnerability
| Titel | EasyAdmin EasyAdmin lastest File Upload, XXE and SSRF Vulnerability |
|---|---|
| Beschreibung | The vulnerability is located at /ureport/designer/saveReportFile, where we can conduct File Upload, XXE, and SSRF attacks. |
| Quelle | ⚠️ https:/ |
| Benutzer | Southseast (UID 65123) |
| Einreichung | 15.03.2024 14:45 (vor 2 Jahren) |
| Moderieren | 22.03.2024 11:50 (7 days later) |
| Status | Akzeptiert |
| VulDB Eintrag | 257717 [lakernote EasyAdmin bis 20240315 saveReportFile erweiterte Rechte] |
| Punkte | 14 |