ГлавнаяУязвимости → CVE-2024-29319
9.8критическая

CVE-2024-29319

Описание

Volmarg Personal Management System 1.4.64 is vulnerable to SSRF (Server Side Request Forgery) via uploading a SVG file. The server can make unintended HTTP and DNS requests to a server that the attacker controls.

Затрагиваемое ПО
Personal-management-system Personal management system
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/b-hermes/vulnerability-research/tree/main/CVE-2024-29319https://github.com/b-hermes/vulnerability-research/tree/main/CVE-2024-29319