CVE-2022-40842
9.1CRITICALndk design NdkAdvancedCustomizationFields 3.5.0 is vulnerable to Server-side request forgery (SSRF) via rotateimg.php.
Published: 11/22/2022Updated: 4/29/2025
Description
ndk design NdkAdvancedCustomizationFields 3.5.0 is vulnerable to Server-side request forgery (SSRF) via rotateimg.php.
AI AnalysisPowered by AI
Affected Products
ndk-designndkadvancedcustomizationfields
References
- http://ndkadvancedcustomizationfields.comBroken LinkNot ApplicableURL Repurposed
- https://github.com/daaaalllii/cve-s/blob/main/CVE-2022-40842/poc.txtExploitThird Party Advisory
- http://ndkadvancedcustomizationfields.comBroken LinkNot ApplicableURL Repurposed
- https://github.com/daaaalllii/cve-s/blob/main/CVE-2022-40842/poc.txtExploitThird Party Advisory