Количество 3
Количество 3
CVE-2023-1971
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as critical, was found in yuan1994 tpAdmin 1.3.12. Affected is the function remote of the file application\admin\controller\Upload.php. The manipulation of the argument url leads to server-side request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-225408. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
GHSA-qr7h-8pv2-xvx2
yuan1994 tpAdmin vulnerable to Server-Side Request Forgery
BDU:2023-02227
Уязвимость функции remote (application\admin\controller\Upload.php) библиотеки tpAdmin, позволяющая нарушителю осуществить SSRF-атаку
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-1971 ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as critical, was found in yuan1994 tpAdmin 1.3.12. Affected is the function remote of the file application\admin\controller\Upload.php. The manipulation of the argument url leads to server-side request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-225408. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. | CVSS3: 6.3 | 0% Низкий | почти 3 года назад |
| GHSA-qr7h-8pv2-xvx2 yuan1994 tpAdmin vulnerable to Server-Side Request Forgery | CVSS3: 4.9 | 0% Низкий | почти 3 года назад |
 | BDU:2023-02227 Уязвимость функции remote (application\admin\controller\Upload.php) библиотеки tpAdmin, позволяющая нарушителю осуществить SSRF-атаку | CVSS3: 6.3 | 0% Низкий | почти 3 года назад |
Уязвимостей на страницу