6 matches found
Hackers Exploit ChatGPT with CVE-2024-27564, 10,000+ Attacks in a Week
In its latest research report, cybersecurity firm Veriti has spotted active exploitation of a vulnerability within "OpenAI's ChatGPT…...
Exploit for Server-Side Request Forgery in Dirk1983 Chatgpt
CVE-2024-27564 Description: A vulnerability in picturepro...
VulnCheck KEV: CVE-2024-27564
A Server-Side Request Forgery SSRF in pictureproxy.php of ChatGPT commit f9f4bbc allows attackers to force the application to make arbitrary requests via injection of crafted URLs into the urlparameter...
CVE-2024-27564
creationtimestamp| type| source ---|---|--- 2024-03-05 18:27:07+00:00| seen| https://t.me/ctinow/200547 2024-03-05 18:27:14+00:00| seen| https://t.me/ctinow/200553 2025-01-22 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-01-22 2025-01-23 00:00:00+00:00|...
CVE-2024-27564
pictureproxy.php in the dirk1983 mm1.ltd source code f9f4bbc allows SSRF via the url parameter. NOTE: the references section has an archived copy of pictureproxy.php from its original GitHub location, but the repository name might later change because it is misleading...
CVE-2024-27564
CVE-2024-27564 describes a Server-Side Request Forgery in pictureproxy.php (dirk1983 mm1.ltd, commit f9f4bbc). The flaw allows an attacker to supply a crafted URL via the url parameter to trigger arbitrary requests from the application, potentially reading local or internal resources. Connected d...