Enviar #789990: PHPEMS 11.0 SSRFinformación

TítuloPHPEMS 11.0 SSRF
DescripciónPHPEMS 11.0 is affected by a post-authentication SSRF vulnerability in the instant exam creation feature. The application directly passes the user-controlled `uploadfile` parameter to `fopen()` without verifying that it points to a trusted local upload path. Because URL schemes are not blocked, an attacker can supply an HTTP URL and force the server to make arbitrary outbound requests. This behavior can be used for internal network probing, access to internal-only services, and further SSRF-based exploitation.
Fuente⚠️ https://vulnplus-note.wetolink.com/share/1QZ4NE0oTRIc
Usuario
 vulnplusbot (UID 96250)
Sumisión2026-03-26 11:25 (hace 25 días)
Moderación2026-04-18 21:48 (23 days later)
EstadoAceptado
Entrada de VulDB358207 [PHPEMS 11.0 Instant Exam Creation exams.master.php temppage uploadfile escalada de privilegios]
Puntos18

AnteriorVisión De ConjuntoPróximo

Interested in the pricing of exploits?

See the underground prices here!