Enviar #644953: simstudioai https://github.com/simstudioai/sim <=1.0.0 SSRFinformación

Títulosimstudioai https://github.com/simstudioai/sim <=1.0.0 SSRF
DescripciónIn the file parse functionality (/api/files/parse), the target URL is user-controllable and lacks sufficient security handling, thus allowing attackers to exploit SSRF vulnerabilities to access internal hosts and services.
Fuente⚠️ https://github.com/simstudioai/sim/issues/960
Usuario
 ZAST.AI (UID 87884)
Sumisión2025-08-31 15:21 (hace 9 meses)
Moderación2025-09-08 11:54 (8 days later)
EstadoAceptado
Entrada de VulDB323057 [SimStudioAI sim hasta 1.0.0 route.ts filePath escalada de privilegios]
Puntos16

AnteriorVisión De ConjuntoPróximo

Want to know what is going to be exploited?

We predict KEV entries!