yuan1994/tpadmin is vulnerable to Server-Side Request Forgery. The vulnerability exists because the library does not properly validate the remote
function in Upload.php
which allows a remote attacker to cause an SSRF bypass via a crafted url.
CPE | Name | Operator | Version |
---|---|---|---|
yuan1994/tpadmin | le | v1.3.12 | |
yuan1994/tpadmin | le | v1.3.12 |