Page 2 of 6 results (0.010 seconds)

CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 2

Harbor prior to 2.0.1 allows SSRF with this limitation: an attacker with the ability to edit projects can scan ports of hosts accessible on the Harbor server's intranet. Harbor versiones anteriores a 2.0.1, permite un ataque de tipo SSRF con esta limitación: un atacante con la capacidad de editar proyectos puede escanear puertos de hosts accesibles en la intranet del servidor Harbor • https://github.com/goharbor/harbor/releases https://www.soluble.ai/blog/harbor-ssrf-cve-2020-13788 https://www.youtube.com/watch?v=v8Isqy4yR3Q • CWE-918: Server-Side Request Forgery (SSRF) •