idreamsoft iCMS server-side request forgery vulnerability (CNVD-2018-14778)
idreamsoft iCMS is an open source content management system CMS based on PHP and MySQL. A server-side request forgery vulnerability exists in versions of idreamsoft iCMS prior to 7.0.11, which stems from the app/spider/spidertools.class.php file being able to receive private and reserved IP...