4 matches found
CVE-2023-7037
A vulnerability was found in automad up to 1.10.9. It has been declared as critical. This vulnerability affects the function import of the file FileController.php. The manipulation of the argument importUrl leads to server-side request forgery. The attack can be initiated remotely. The exploit ha...
Server side request forgery (ssrf)
A vulnerability was found in automad up to 1.10.9. It has been declared as critical. This vulnerability affects the function import of the file FileController.php. The manipulation of the argument importUrl leads to server-side request forgery. The attack can be initiated remotely. The exploit ha...
CVE-2023-7037
The CVE-2023-7037 entry describes a SSRF flaw in automad up to version 1.10.9, triggered by manipulating the importUrl argument in FileController.php during the import function. This enables remote triggering of SSRF, with discussions of potential internal scans or abuse of local services in rela...
CVE-2023-7037 automad FileController.php import server-side request forgery
A vulnerability was found in automad up to 1.10.9. It has been declared as critical. This vulnerability affects the function import of the file FileController.php. The manipulation of the argument importUrl leads to server-side request forgery. The attack can be initiated remotely. The exploit ha...