Description
Kity Minder v1.3.5 was discovered to contain a Server-Side Request Forgery (SSRF) via the init function at ImageCapture.class.php.
Remediation
References
https://github.com/fex-team/kityminder/issues/345
Related Vulnerabilities
CVE-2018-5673 Vulnerability in maven package org.webjars.bower:dojo
CVE-2023-38507 Vulnerability in npm package @strapi/plugin-users-permissions
CVE-2020-16022 Vulnerability in maven package org.webjars.npm:electron
CVE-2020-13445 Vulnerability in maven package com.liferay:com.liferay.portal.template.velocity