2 matches found
CVE-2018-10220
Glastopf 3.1.3-dev has SSRF, as demonstrated by the abc.php a parameter. NOTE: the vendor indicates that this is intentional behavior because the product is a web application honeypot, and modules/handlers/emulators/rfi.py supports Remote File Inclusion emulation...
CVE-2018-10220
Glastopf 3.1.3-dev has a Server-Side Request Forgery (SSRF) vulnerability demonstrated via the abc.php?a parameter. The vendor states this behavior is intentional because Glastopf is a web application honeypot, and the distribution includes modules/emulators/rfi.py for Remote File Inclusion emula...