| 标题 | zyddnys manga-image-translator <=beta-0.3 SSRF |
|---|
| 描述 | A Server-Side Request Forgery (SSRF) vulnerability exists in manga-image-translator version beta-0.3 (endpoint - /translate/bytes), allowing an attacker to make arbitrary HTTP requests from the server to internal or external resources by submitting a malicious URL through the watch monitoring functionality. |
|---|
| 来源 | ⚠️ https://github.com/zyddnys/manga-image-translator/issues/1118 |
|---|
| 用户 | ZAST.AI (UID 87884) |
|---|
| 提交 | 2026-02-26 11時25分 (5 月前) |
|---|
| 管理 | 2026-03-11 13時54分 (13 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 350390 [zyddnys manga-image-translator 直到 beta-0.3 Translate Endpoints request_extraction.py to_pil_image 权限提升] |
|---|
| 积分 | 17 |
|---|