| Title | Antabot White-Jotter 0.2.2 Server-Side Request Forgery |
|---|
| Description | A Server-Side Request Forgery (SSRF) vulnerability exists in the article cover URL specification functionality of Antabot White-Jotter version 0.2.2. This vulnerability arises because the application allows users to define arbitrary URLs using the article editor to fetch article cover images. An attacker can exploit this functionality to force the server to make unauthorized requests to internal services or external targets, potentially exposing sensitive information or enabling further attacks. |
|---|
| Source | ⚠️ https://github.com/cydtseng/Vulnerability-Research/blob/main/white-jotter/ServerSideRequestForgery-ArticleCoverURL.md |
|---|
| User | vastzero (UID 78767) |
|---|
| Submission | 12/19/2024 17:02 (1 Year ago) |
|---|
| Moderation | 12/29/2024 13:29 (10 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 289765 [Antabot White-Jotter up to 0.2.2 Article Editor /admin/content/editor articleCover server-side request forgery] |
|---|
| Points | 20 |
|---|