Vulnerabilities > CVE-2023-40969 - Server-Side Request Forgery (SSRF) vulnerability in Slims Senayan Library Management System 9.6.1

CVSS 6.1 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

NONE

network

low complexity

slims

CWE-918

NVD

Published: 2023-09-01

Updated: 2023-09-07

Summary

Senayan Library Management Systems SLIMS 9 Bulian v9.6.1 is vulnerable to Server Side Request Forgery (SSRF) via admin/modules/bibliography/pop_p2p.php.

Vulnerable Configurations

Part	Description	Count
Application	Slims Slims Senayan Library Management System 9.6.1	1

Common Weakness Enumeration (CWE)

CWE-918 - Server-Side Request Forgery (SSRF)

References

https://github.com/slims/slims9_bulian/issues/204
https://github.com/komangsughosa/CVE-ID-not-yet/blob/main/slims/slims9_bulian-9.6.1-SSRF-pop_p2p.md