1 results (0.004 seconds)
CVSS: 9.9EPSS: 0%CPEs: 1EXPL: 0
CVSS: 9.9EPSS: 0%CPEs: 1EXPL: 0CVE-2023-3744 – Server-Side Request Forgery in SLiMS
https://notcve.org/view.php?id=CVE-2023-3744
02 Oct 2023 — Server-Side Request Forgery vulnerability in SLims version 9.6.0. This vulnerability could allow an authenticated attacker to send requests to internal services or upload the contents of relevant files via the "scrape_image.php" file in the imageURL parameter. Vulnerabilidad de Server-Side Request Forgery en SLims versión 9.6.0. Esta vulnerabilidad podría permitir a un atacante autenticado enviar solicitudes a servicios internos o cargar el contenido de archivos relevantes a través del archivo "scrape_image... • https://www.incibe.es/en/incibe-cert/notices/aviso/server-side-request-forgery-slims • CWE-918: Server-Side Request Forgery (SSRF) •