Description
Kity Minder v1.3.5 was discovered to contain a Server-Side Request Forgery (SSRF) via the init function at ImageCapture.class.php.
Remediation
References
https://github.com/fex-team/kityminder/issues/345
Related Vulnerabilities
CVE-2019-19040 Vulnerability in maven package org.kairosdb:kairosdb
CVE-2023-27096 Vulnerability in maven package cn.hippo4j:hippo4j-all
CVE-2017-16182 Vulnerability in npm package serverxxx
CVE-2020-12265 Vulnerability in maven package org.webjars:decompress-tar
CVE-2019-10768 Vulnerability in maven package org.webjars.npm:angular