CVE-2022-40296
9.8CRITICALThe application was vulnerable to a Server-Side Request Forgery attacks, allowing the backend server to interact with unexpected endpoints, potentially including internal and local services, leading
Published: 10/31/2022Updated: 5/6/2025
Description
The application was vulnerable to a Server-Side Request Forgery attacks, allowing the backend server to interact with unexpected endpoints, potentially including internal and local services, leading to attacks in other downstream systems.
AI AnalysisPowered by AI
Affected Products
phppointofsalephp_point_of_sale
19.0
References
- https://www.themissinglink.com.au/security-advisories/cve-2022-40296Third Party Advisory
- https://www.themissinglink.com.au/security-advisories/cve-2022-40296Third Party Advisory