Description

Server Side Request Forgery (SSRF) vulnerability in saveUrlAs function in ImagesService.java in sunkaifei FlyCMS version 20190503.

Related CPE's

a

flycms_project

flycms

20190503

Vulnerable

References

https://github.com/sunkaifei/FlyCms/issues/1

ExploitThird Party Advisory

https://github.com/sunkaifei/FlyCms/issues/1

ExploitThird Party Advisory

Weaknesses

[email protected]

Primary
CWE-918

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.5 · High

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2021-04-01T17:15:13.153Z

4 years ago

Last modified

2024-11-21T04:09:16.157Z

1 year ago