Server Side Request Forgery vulnerability in Vebto Pixie Image Editor 1.4 and 1.7 allows remote attackers to disclose information or execute arbitrary code via the url parameter to Launderer.php.
References
Link | Resource |
---|---|
http://seclists.org/fulldisclosure/2017/Sep/47 | Mailing List Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2017-09-25T17:00:00
Updated: 2017-09-25T16:57:01
Reserved: 2017-08-17T00:00:00
Link: CVE-2017-12905
JSON object: View
NVD Information
Status : Analyzed
Published: 2017-09-25T17:29:00.727
Modified: 2020-10-02T14:55:53.707
Link: CVE-2017-12905
JSON object: View
Redhat Information
No data.
CWE