Vulnerability CVE-2023-49471
Published: 2024-01-10

Description:
Blind Server-Side Request Forgery (SSRF) vulnerability in karlomikus Bar Assistant before version 3.2.0 does not validate a parameter before making a request through Image::make(), which could allow authenticated remote attackers to execute arbitrary code.

 References:
https://github.com/zunak/CVE-2023-49471
Copyright 2026, cxsecurity.com

 

Back to Top