Submit #468513: wangl1989 mysiteforme 1.0 SSRFinfo

Titelwangl1989 mysiteforme 1.0 SSRF
BeschreibungThe doContent method in src/main/java/com/mysiteform/admin/controller/system/FileController. java does not filter the incoming content, allowing attackers to read any files on the server or exploit the server to read any files on other websites.
Quelle⚠️ https://github.com/wangl1989/mysiteforme/issues/56
Benutzer
 LVZC (UID 74910)
Einreichung24.12.2024 15:37 (vor 1 Jahr)
Moderieren04.01.2025 10:48 (11 days later)
StatusAkzeptiert
VulDB Eintrag290213 [wangl1989 mysiteforme 1.0 FileController doContent content erweiterte Rechte]
Punkte16

ZurückÜbersichtWeiter

Want to know what is going to be exploited?

We predict KEV entries!