Server-side Request Forgery (SSRF) vulnerability in PublicCMS before 4.0.202011.b via /publiccms/admin/ueditor when the action is catchimage.
References
Link | Resource |
---|---|
https://github.com/sanluan/PublicCMS/commit/0f4c4872914b6a71305e121a7d9a19c07cde0338 | Patch Third Party Advisory |
https://github.com/sanluan/PublicCMS/issues/51 | Exploit Issue Tracking Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-09-02T17:33:43
Updated: 2022-09-02T17:33:43
Reserved: 2021-02-25T00:00:00
Link: CVE-2021-27693
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-09-02T18:15:11.687
Modified: 2022-09-08T03:25:45.550
Link: CVE-2021-27693
JSON object: View
Redhat Information
No data.
CWE