ARTICLE AD BOX
Published : Oct. 25, 2024, 9:15 p.m. | 24 minutes ago
Description : An issue was found in mipjz 5.0.5. In the mipPost method of \app\setting\controller\ApiAdminTool.php, the value of the postAddress parameter is not processed and is directly passed into curl_exec execution and output, resulting in a Server-side request forgery (SSRF) vulnerability that can read server files.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...