In WhatsUp Gold versions released before 2023.1.2 ,
a blind SSRF vulnerability exists in Whatsup Gold's FaviconController that allows an attacker to send arbitrary HTTP requests on behalf of the vulnerable server.
References
Configurations
No configuration.
History
15 May 2024, 16:40
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
14 May 2024, 21:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-05-14 21:15
Updated : 2024-05-15 16:40
NVD link : CVE-2024-4561
Mitre link : CVE-2024-4561
CVE.ORG link : CVE-2024-4561
JSON object : View
Products Affected
No product.
CWE
CWE-918
Server-Side Request Forgery (SSRF)