Описание
Server-Side Request Forgery (SSRF) in GitHub repository plantuml/plantuml prior to 1.2023.9.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| plantuml | unfixed | package | ||
| plantuml | no-dsa | trixie | package | |
| plantuml | no-dsa | bookworm | package | |
| plantuml | no-dsa | bullseye | package | |
| plantuml | no-dsa | buster | package |
Примечания
https://huntr.dev/bounties/8ac3316f-431c-468d-87e4-3dafff2ecf51/
https://github.com/plantuml/plantuml/commit/b32500bb61ae617bb312496d6d832e4be8190797 (v1.2023.9)
Связанные уязвимости
CVSS3: 10
ubuntu
больше 2 лет назад
Server-Side Request Forgery (SSRF) in GitHub repository plantuml/plantuml prior to 1.2023.9.
CVSS3: 10
nvd
больше 2 лет назад
Server-Side Request Forgery (SSRF) in GitHub repository plantuml/plantuml prior to 1.2023.9.
CVSS3: 7.2
github
больше 2 лет назад
PlantUML Server-Side Request Forgery vulnerability