| Titel | China Shanghai Lingdang Information Technology Lingdang CRM <= V8.6.5.4 Server-Side Request Forgery |
|---|
| Beschreibung | In the latest version of LingDang CRM<=V8.6.5.4, it is vulnerable to server-side request forgery attacks. This allows unauthenticated attackers to make web requests to any location originating from web applications, which can be used to query and modify information from internal services. |
|---|
| Quelle | ⚠️ https://github.com/jackyliu666/dingtalk |
|---|
| Benutzer | paatiw (UID 32385) |
|---|
| Einreichung | 18.08.2025 18:33 (vor 10 Monaten) |
|---|
| Moderieren | 09.09.2025 18:02 (22 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 323233 [Shanghai Lingdang Information Technology Lingdang CRM bis 8.6.5.4 index_event.php corpurl erweiterte Rechte] |
|---|
| Punkte | 18 |
|---|