Vulnerabilities > CVE-2022-28090 - Server-Side Request Forgery (SSRF) vulnerability in Ujcms Jspxcms 10.2.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
LOW Integrity impact
LOW Availability impact
NONE Summary
Jspxcms v10.2.0 allows attackers to execute a Server-Side Request Forgery (SSRF) via /cmscp/ext/collect/fetch_url.do?url=.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |