8 matches found
CVE-2021-22255
SSRF in URL file upload in Baserow 1.1.0 allows remote authenticated users to retrieve files from the internal server network exposed over HTTP by inserting an internal address...
EUVD-2021-9401
Malicious code in bioql PyPI...
CVE-2021-22255
SSRF in URL file upload in Baserow 1.1.0 allows remote authenticated users to retrieve files from the internal server network exposed over HTTP by inserting an internal address...
CVE-2021-22255
SSRF in URL file upload in Baserow 1.1.0 allows remote authenticated users to retrieve files from the internal server network exposed over HTTP by inserting an internal address...
Design/Logic Flaw
SSRF in URL file upload in Baserow 1.1.0 allows remote authenticated users to retrieve files from the internal server network exposed over HTTP by inserting an internal address...
CVE-2021-22255
CVE-2021-22255 targets Baserow prior to 1.1.0 with SSRF via the URL file upload feature. The root cause is improper validation/escaping in the URL file upload, enabling remote authenticated users to retrieve files from internal network resources exposed over HTTP by inserting an internal address....
CVE-2021-22255
SSRF in URL file upload in Baserow 1.1.0 allows remote authenticated users to retrieve files from the internal server network exposed over HTTP by inserting an internal address...
Baserow 代码问题漏洞
Baserow is an open source no-code database and Airtable replacement. A security vulnerability exists in Baserow versions prior to 1.1.0, which stems from the URL file upload feature of the software not validating and escaping parameters. This allowed a remote authenticated user to retrieve networ...