mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-29 17:50:34 +00:00
816 B
816 B
CVE-2022-41477
Description
A security issue was discovered in WeBid <=1.2.2. A Server-Side Request Forgery (SSRF) vulnerability in the admin/theme.php file allows remote attackers to inject payloads via theme parameters to read files across directories.
POC
Reference
- https://github.com/zer0yu/CVE_Request/blob/master/Webid/WeBid_Path_Traversal.md
- https://github.com/zer0yu/CVE_Request/blob/master/Webid/WeBid_Path_Traversal.md