Отправить #273832: rebuild rebuild <= 3.5.5 SSRFИнформация

Названиеrebuild rebuild <= 3.5.5 SSRF
ОписаниеThere is an SSRF vulnerability in the FileDownLoader#readRawText method. Since the URL parameters are controllable, an http request is initiated to the specified url and the request result is returned. The attacker uses this vulnerability to detect intranet services and ports and read related files.
Источник⚠️ https://www.yuque.com/mailemonyeyongjuan/tha8tr/yemvnt5uo53gfem5
Пользователь
 lemono (UID 59906)
Представление27.01.2024 05:51 (2 лет назад)
Модерация29.01.2024 11:47 (2 days later)
Статуспринято
Запись VulDB252290 [Rebuild до 3.5.5 HTTP Request readRawText url эскалация привилегий]
Баллы17

Might our Artificial Intelligence support you?

Check our Alexa App!