Invia #299169: EasyAdmin EasyAdmin lastest File Upload, XXE and SSRF Vulnerabilityinformazioni

TitoloEasyAdmin EasyAdmin lastest File Upload, XXE and SSRF Vulnerability
DescrizioneThe vulnerability is located at /ureport/designer/saveReportFile, where we can conduct File Upload, XXE, and SSRF attacks.
Fonte⚠️ https://gitee.com/lakernote/easy-admin/issues/I98ZTA
Utente
 Southseast (UID 65123)
Sottomissione15/03/2024 14:45 (2 anni fa)
Moderazione22/03/2024 11:50 (7 days later)
StatoAccettato
Voce VulDB257717 [lakernote EasyAdmin fino a 20240315 saveReportFile escalationi di privilegi]
Punti14

Want to stay up to date on a daily basis?

Enable the mail alert feature now!