Vulnerabilities > Nbnbk Project > Nbnbk > 3

DATE	CVE	VULNERABILITY TITLE	RISK
2022-06-09	CVE-2022-31386	Server-Side Request Forgery (SSRF) vulnerability in Nbnbk Project Nbnbk 3 A Server-Side Request Forgery (SSRF) in the getFileBinary function of nbnbk cms 3 allows attackers to force the application to make arbitrary requests via injection of arbitrary URLs into the URL parameter. network low complexity nbnbk-project CWE-918 critical	9.1

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.