Server-Side Request Forgery (SSRF) Vulnerability in fetch_net_file_upload Function of baijiacmsV4 v4.1.4

CVE-2022-38931 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

A Server-Side Request Forgery (SSRF) in fetch_net_file_upload function of baijiacmsV4 v4.1.4 allows remote attackers to force the application to make arbitrary requests via injection of arbitrary URLs into the url parameter.

Learn more about our Cis Benchmark Audit For Server Software.