Описание
Server-Side Request Forgery (SSRF) vulnerability exists in the URL processing functionality of PHProxy version 1.1.1 and prior. The input validation for the _proxurl parameter can be bypassed, allowing a remote, unauthenticated attacker to submit a specially crafted URL
EPSS
Процентиль: 15%
0.00048
Низкий
9.1 Critical
CVSS3
Дефекты
CWE-918
Связанные уязвимости
CVSS3: 9.1
github
7 месяцев назад
Server-Side Request Forgery (SSRF) vulnerability exists in the URL processing functionality of PHProxy version 1.1.1 and prior. The input validation for the _proxurl parameter can be bypassed, allowing a remote, unauthenticated attacker to submit a specially crafted URL
EPSS
Процентиль: 15%
0.00048
Низкий
9.1 Critical
CVSS3
Дефекты
CWE-918