Soumettre #299169: EasyAdmin EasyAdmin lastest File Upload, XXE and SSRF Vulnerability
| Titre | EasyAdmin EasyAdmin lastest File Upload, XXE and SSRF Vulnerability |
|---|---|
| Description | The vulnerability is located at /ureport/designer/saveReportFile, where we can conduct File Upload, XXE, and SSRF attacks. |
| La source | ⚠️ https:/ |
| Utilisateur | Southseast (UID 65123) |
| Soumission | 15/03/2024 14:45 (il y a 2 ans) |
| Modérer | 22/03/2024 11:50 (7 days later) |
| Statut | Accepté |
| Entrée VulDB | 257717 [lakernote EasyAdmin jusqu’à 20240315 saveReportFile élévation de privilèges] |
| Points | 14 |