Vulnerabilities > CVE-2022-40842 - Server-Side Request Forgery (SSRF) vulnerability in Ndk-Design Ndkadvancedcustomizationfields 3.5.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
NONE Summary
ndk design NdkAdvancedCustomizationFields 3.5.0 is vulnerable to Server-side request forgery (SSRF) via rotateimg.php.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |