Blind Server-Side Request Forgery (SSRF) vulnerability in karlomikus Bar Assistant before version 3.2.0 does not validate a parameter before making a request through Image::make(), which could allow authenticated remote attackers to execute arbitrary code.
CPE | Name | Operator | Version |
---|---|---|---|
bar_assistant | lt | 3.2.0 |