Submeter #299169: EasyAdmin EasyAdmin lastest File Upload, XXE and SSRF Vulnerabilityinformação

TítuloEasyAdmin EasyAdmin lastest File Upload, XXE and SSRF Vulnerability
DescriçãoThe vulnerability is located at /ureport/designer/saveReportFile, where we can conduct File Upload, XXE, and SSRF attacks.
Fonte⚠️ https://gitee.com/lakernote/easy-admin/issues/I98ZTA
Utilizador
 Southseast (UID 65123)
Submissão15/03/2024 14h45 (há 2 anos)
Moderação22/03/2024 11h50 (7 days later)
EstadoAceite
Entrada VulDB257717 [lakernote EasyAdmin até 20240315 saveReportFile Elevação de Privilégios]
Pontos14

Might our Artificial Intelligence support you?

Check our Alexa App!