2 matches found
CVE-2023-3238 OTCMS server-side request forgery
A vulnerability, which was classified as critical, has been found in OTCMS up to 6.62. This issue affects some unknown processing of the file /admin/read.php?mudi=getSignal. The manipulation of the argument signalUrl leads to server-side request forgery. The attack may be initiated remotely. The...
CVE-2023-3238
OTCMS up to 6.62 contains a server-side request forgery (SSRF) vulnerability in the /admin/read.php?mudi=getSignal endpoint. The manipulation of the signalUrl parameter allows remote exploitation, as described in CVE-2023-3238 and corroborated by multiple sources. Impact is described as critical ...