| 제목 | Antabot White-Jotter 0.2.2 Server-Side Request Forgery |
|---|
| 설명 | A Server-Side Request Forgery (SSRF) vulnerability exists in the article cover URL specification functionality of Antabot White-Jotter version 0.2.2. This vulnerability arises because the application allows users to define arbitrary URLs using the article editor to fetch article cover images. An attacker can exploit this functionality to force the server to make unauthorized requests to internal services or external targets, potentially exposing sensitive information or enabling further attacks. |
|---|
| 원천 | ⚠️ https://github.com/cydtseng/Vulnerability-Research/blob/main/white-jotter/ServerSideRequestForgery-ArticleCoverURL.md |
|---|
| 사용자 | vastzero (UID 78767) |
|---|
| 제출 | 2024. 12. 19. PM 05:02 (1 년도 ago) |
|---|
| 모더레이션 | 2024. 12. 29. PM 01:29 (10 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 289765 [Antabot White-Jotter 까지 0.2.2 Article Editor /admin/content/editor articleCover 권한 상승] |
|---|
| 포인트들 | 20 |
|---|