CVE-2022-32995
Halo CMS v1.5.3 contains a Server-Side Request Forgery (SSRF) via the template remote download function. The issue is documented across multiple sources (NVD entry CVE-2022-32995). Root cause: SSRF in the template remote download feature allows external requests to be triggered by the server. Imp...