| Название | VIP-video-analysis system exists in SSRF vulnerability unauthorized in data/title.php |
|---|
| Описание | The reason for the formation of SSRF is mostly due to the server providing the function of obtaining data from other server applications without filtering and restricting the target address. For example, obtaining web page text content from a specified URL address, loading images from the specified address, downloading, and so on. The system has an SSRF vulnerability in data/title.php |
|---|
| Источник | ⚠️ https://github.com/Xor-Gerke/webray.com.cn/blob/main/cve/VIP-video-analysis/SSRF.md |
|---|
| Пользователь | webray.com.cn (UID 24778) |
|---|
| Представление | 31.05.2023 11:59 (3 лет назад) |
|---|
| Модерация | 31.05.2023 15:04 (3 hours later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 230359 [yiwent Vip Video Analysis 1.0 data/title.php titurl эскалация привилегий] |
|---|
| Баллы | 19 |
|---|