Vulnerability CVE-2022-38931


Published: 2022-09-20   Modified: 2022-09-21

Description:
A Server-Side Request Forgery (SSRF) in fetch_net_file_upload function of baijiacmsV4 v4.1.4 allows remote attackers to force the application to make arbitrary requests via injection of arbitrary URLs into the url parameter.

 References:
https://github.com/zer0yu/CVE_Request/blob/master/baijiacms/baijiacmsv4_ssrf.md

Copyright 2022, cxsecurity.com

 

Back to Top