ShopXO v6.4.0 is vulnerable to Server-Side Request Forgery (SSRF) via image upload function.
References
Configurations
No configuration.
History
31 Mar 2025, 20:15
Type | Values Removed | Values Added |
---|---|---|
References | () https://www.yuque.com/morysummer/vx41bz/stggvmlxs9ewqlvu - | |
CWE | CWE-918 | |
Summary |
|
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.3 |
28 Mar 2025, 22:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2025-03-28 22:15
Updated : 2025-04-01 20:26
NVD link : CVE-2025-28092
Mitre link : CVE-2025-28092
CVE.ORG link : CVE-2025-28092
JSON object : View
Products Affected
No product.
CWE
CWE-918
Server-Side Request Forgery (SSRF)