NA – CVE-2020-24139 – Server-side request forgery in Wcms 0.3.2 lets…

April 7, 2021

Server-side request forgery in Wcms 0.3.2 lets an attacker send crafted requests from the back-end server of a vulnerable web application via the path parameter to wex/cssjs.php. It can help identify open ports, local network hosts and execute command on local services.Latest news clusters for enRead More