In WhatsUp Gold versions released before 2023.1.2 , a...
Moderate severity
Unreviewed
Published
May 14, 2024
to the GitHub Advisory Database
•
Updated May 14, 2024
Description
Published by the National Vulnerability Database
May 14, 2024
Published to the GitHub Advisory Database
May 14, 2024
Last updated
May 14, 2024
In WhatsUp Gold versions released before 2023.1.2 ,
a blind SSRF vulnerability exists in Whatsup Gold's FaviconController that allows an attacker to send arbitrary HTTP requests on behalf of the vulnerable server.
References