| Titel | https://gitee.com/chshcms/mccms mccms 2.7 Server-Side Request Forgery |
|---|
| Beschreibung | The index () method in MCCMS 2.7 version sys/apps/controllers/api/Gf.php has
SSRF, which allows attackers to read arbitrary files or send network requests by
constructing pic parameters
|
|---|
| Quelle | ⚠️ https://github.com/caigo8/CVE-md/blob/main/Mccms_V2.7/%E5%89%8D%E5%8F%B0SSRF.md |
|---|
| Benutzer | huanyue (UID 62942) |
|---|
| Einreichung | 21.05.2025 14:31 (vor 11 Monaten) |
|---|
| Moderieren | 29.05.2025 10:39 (8 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 310497 [chshcms mccms 2.7 Gf.php index pic erweiterte Rechte] |
|---|
| Punkte | 17 |
|---|