CVE-2022-40842
9.1CRITICALndk design NdkAdvancedCustomizationFields 3.5.0 is vulnerable to Server-side request forgery (SSRF) via rotateimg.php.
Publicado: 11/22/2022Actualizado: 4/29/2025
Descripción
ndk design NdkAdvancedCustomizationFields 3.5.0 is vulnerable to Server-side request forgery (SSRF) via rotateimg.php.
Análisis IAImpulsado por IA
Productos Afectados
ndk-designndkadvancedcustomizationfields
Referencias
- http://ndkadvancedcustomizationfields.comBroken LinkNot ApplicableURL Repurposed
- https://github.com/daaaalllii/cve-s/blob/main/CVE-2022-40842/poc.txtExploitThird Party Advisory
- http://ndkadvancedcustomizationfields.comBroken LinkNot ApplicableURL Repurposed
- https://github.com/daaaalllii/cve-s/blob/main/CVE-2022-40842/poc.txtExploitThird Party Advisory