Visma Bug Bounty Program: SSRF in img export

ID H1:816848
Type hackerone
Reporter muon4
Modified 2020-03-26T09:50:15


The researcher has found a SSRF vulnerability in the application's image export functionality. The app would take all the html as input and generate an image based on that. By manipulating the html code and adding a src tag, it was possible to trigger a SSRF.