| Título | China Shanghai Lingdang Information Technology Lingdang CRM <= V8.6.5.4 Server-Side Request Forgery |
|---|
| Descrição | In the latest version of LingDang CRM<=V8.6.5.4, it is vulnerable to server-side request forgery attacks. This allows unauthenticated attackers to make web requests to any location originating from web applications, which can be used to query and modify information from internal services. |
|---|
| Fonte | ⚠️ https://github.com/jackyliu666/dingtalk |
|---|
| Utilizador | paatiw (UID 32385) |
|---|
| Submissão | 18/08/2025 18h33 (há 10 meses) |
|---|
| Moderação | 09/09/2025 18h02 (22 days later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 323233 [Shanghai Lingdang Information Technology Lingdang CRM até 8.6.5.4 index_event.php corpurl Elevação de Privilégios] |
|---|
| Pontos | 18 |
|---|