Описание
An issue was discovered in linqi before 1.4.0.1 on Windows. There is SSRF via Document template generation; i.e., via remote images in process creation, file inclusion, and PDF document generation via malicious JavaScript.
Ссылки
- Broken Link
- Product
- Broken Link
- Product
Уязвимые конфигурации
Конфигурация 1Версия до 1.4.0.1 (исключая)
Одновременно
cpe:2.3:a:linqi:linqi:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
EPSS
Процентиль: 32%
0.00123
Низкий
5.9 Medium
CVSS3
Дефекты
CWE-918
Связанные уязвимости
CVSS3: 5.9
github
больше 1 года назад
An issue was discovered in linqi before 1.4.0.1 on Windows. There is SSRF via Document template generation; i.e., via remote images in process creation, file inclusion, and PDF document generation via malicious JavaScript.
EPSS
Процентиль: 32%
0.00123
Низкий
5.9 Medium
CVSS3
Дефекты
CWE-918