Visma Bug Bounty Program: SSRF in img export

2020-03-11T14:12:31
ID H1:816848
Type hackerone
Reporter muon4
Modified 2020-03-26T09:50:15

Description

The researcher has found a SSRF vulnerability in the application's image export functionality. The app would take all the html as input and generate an image based on that. By manipulating the html code and adding a src tag, it was possible to trigger a SSRF.