| शीर्षक | HBAI-Ltd Toonflow 1.1.1 Server-Side Request Forgery |
|---|
| विवरण | Toonflow v1.1.1 contains a Server-Side Request Forgery (SSRF) vulnerability in the /api/setting/vendorConfig/getCodeByLink endpoint. The link parameter accepts arbitrary URLs without any validation on protocol, hostname, or IP address range. The server-side fetch() call retrieves the target URL and returns the complete response body to the requesting user (full-read SSRF). |
|---|
| स्रोत | ⚠️ https://github.com/HBAI-Ltd/Toonflow-app/issues/95 |
|---|
| उपयोगकर्ता | Yu Bao (UID 88956) |
|---|
| सबमिशन | 08/04/2026 11:00 AM (19 दिन पहले) |
|---|
| संयम | 26/04/2026 10:16 AM (18 days later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 359659 [HBAI-Ltd Toonflow-app तक 1.1.1 getCodeByLink Endpoint getCodeByLink.ts fetch लिंक अधिकार वृद्धि] |
|---|
| अंक | 19 |
|---|