제출 #474965: wuzhicms 4.1.0 SSRF정보

제목wuzhicms 4.1.0 SSRF
설명The test method in coreframe/app/search/admin/config.php does not filter the input sphinxhost and sphinxport parameters, allowing attackers to detect whether internal network ports are open
원천⚠️ https://github.com/wuzhicms/wuzhicms/issues/212
사용자
 LVZC (UID 74910)
제출2025. 01. 05. PM 12:17 (1 년도 ago)
모더레이션2025. 01. 15. PM 01:00 (10 days later)
상태수락
VulDB 항목291915 [wuzhicms 4.1.0 config.php test sphinxhost/sphinxport 권한 상승]
포인트들15

Do you need the next level of professionalism?

Upgrade your account now!