| 标题 | yanyutao0402 https://gitee.com/yanyutao0402/ChanCMS <3.1.3 SSRF |
|---|
| 描述 | SSRF vulnerability on the /cms/collect/getPages. In the network access functionality, the target URL is user-controllable and lacks sufficient security handling, thus allowing attackers to exploit SSRF vulnerabilities to access internal hosts and services. |
|---|
| 来源 | ⚠️ https://gitee.com/yanyutao0402/ChanCMS/issues/ICLP28 |
|---|
| 用户 | ZAST.AI (UID 87884) |
|---|
| 提交 | 2025-07-25 03時21分 (8 月前) |
|---|
| 管理 | 2025-07-26 15時08分 (1 day later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 317816 [yanyutao0402 ChanCMS 直到 3.1.2 /cms/collect/getPages targetUrl 权限提升] |
|---|
| 积分 | 17 |
|---|