CVE-2021-30108

Severity CVSS v4.0:
Pending analysis
Type:
CWE-918 Server-Side Request Forgery (SSRF)
Publication date:
24/05/2021
Last modified:
28/05/2021

Description

Feehi CMS 2.1.1 is affected by a Server-side request forgery (SSRF) vulnerability. When the user modifies the HTTP Referer header to any url, the server can make a request to it.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:feehi:feehi_cms:2.1.1:*:*:*:*:*:*:*


References to Advisories, Solutions, and Tools