Submit #731241: https://gitee.com/xiweicheng/tms/ Merchant Mall - Mall Development/TMS 1.0 Server-Side Request Forgeryinfo

Titlehttps://gitee.com/xiweicheng/tms/ Merchant Mall - Mall Development/TMS 1.0 Server-Side Request Forgery
DescriptionMerchant Mall - The TMS system developed for the mall is vulnerable to SSRF (Server-Side Request Forgery). SSRF is a security vulnerability that allows attackers to construct requests that are initiated by the server.
Source⚠️ https://github.com/bkglfpp/CVE-md/blob/main/%E5%95%86%E6%88%B7%E5%95%86%E5%9F%8E%E2%80%94%E5%95%86%E5%9F%8E%E5%BC%80%E5%8F%91tms/SSRF%EF%BC%881%EF%BC%89.md
User
 youran (UID 89737)
Submission01/04/2026 09:42 (5 months ago)
Moderation01/16/2026 20:09 (12 days later)
StatusAccepted
VulDB entry341630 [xiweicheng TMS up to 2.28.0 HtmlUtil.java summary url server-side request forgery]
Points16

PreviousOverviewNext

Do you need the next level of professionalism?

Upgrade your account now!