Vulnerabilities > CVE-2022-28090 - Server-Side Request Forgery (SSRF) vulnerability in Ujcms Jspxcms 10.2.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
NONE Summary
Jspxcms v10.2.0 allows attackers to execute a Server-Side Request Forgery (SSRF) via /cmscp/ext/collect/fetch_url.do?url=.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |