Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

jeudi 15 avril 2021

Group Office 6.4.196 URL Parameter group/api/upload.php url server-side request forgery

A vulnerability was found in Group Office 6.4.196 and classified as critical. Affected by this issue is some unknown functionality of the file group/api/upload.php of the component URL Parameter Handler. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Lien vers l'article source

Auteur: VulDB

Catégories: VulDBNombre de vues: 30


Événements SSI