CVE-2022-40842
9.1CRITICALndk design NdkAdvancedCustomizationFields 3.5.0 is vulnerable to Server-side request forgery (SSRF) via rotateimg.php.
Publicado: 11/22/2022Atualizado: 4/29/2025
Descrição
ndk design NdkAdvancedCustomizationFields 3.5.0 is vulnerable to Server-side request forgery (SSRF) via rotateimg.php.
Análise IADesenvolvido por IA
Produtos Afetados
ndk-designndkadvancedcustomizationfields
Referências
- http://ndkadvancedcustomizationfields.comBroken LinkNot ApplicableURL Repurposed
- https://github.com/daaaalllii/cve-s/blob/main/CVE-2022-40842/poc.txtExploitThird Party Advisory
- http://ndkadvancedcustomizationfields.comBroken LinkNot ApplicableURL Repurposed
- https://github.com/daaaalllii/cve-s/blob/main/CVE-2022-40842/poc.txtExploitThird Party Advisory