6 matches found
EUVD-2022-52905
Malicious code in bioql PyPI...
Server side request forgery (ssrf)
A vulnerability was found in JIZHICMS 2.4.5. It has been classified as critical. Affected is the function index of the file TemplateController.php. The manipulation of the argument webapi leads to server-side request forgery. It is possible to launch the attack remotely. The exploit has been...
CVE-2023-2927 JIZHICMS TemplateController.php index server-side request forgery
A vulnerability was found in JIZHICMS 2.4.5. It has been classified as critical. Affected is the function index of the file TemplateController.php. The manipulation of the argument webapi leads to server-side request forgery. It is possible to launch the attack remotely. The exploit has been...
CVE-2022-31390
Jizhicms v2.2.5 was discovered to contain a Server-Side Request Forgery SSRF vulnerability via the Update function in app/admin/c/TemplateController.php...
Server side request forgery (ssrf)
Jizhicms v2.2.5 was discovered to contain a Server-Side Request Forgery SSRF vulnerability via the Update function in app/admin/c/TemplateController.php...
CVE-2022-31390
CVE-2022-31390 affects Jizhicms v2.2.5 and is an SSRF vulnerability exploitable via the Update function in app/admin/c/TemplateController.php. According to the sources, the vulnerability allows server-side requests to be made by the application, with CVSS3.1 base score 9.1 (CRITICAL) and CVSS2 ba...