2 matches found
CVE-2021-26474
Various Vembu products allow an attacker to execute a non-blind http-only Cross Site Request Forgery Other products or versions of products in this family may be affected too...
CVE-2021-26474
CVE-2021-26474 affects Vembu BDR Suite. Connected CNVD/CNVD-like entries indicate a code issue allowing unauthenticated SSRF via a GET request that specifies a hostname and port number. This constitutes an SSRF vulnerability in Vembu BDR Suiteās handling of certain GET requests, enabling an attac...