CVE-2018-20528

CVE-2018-20528

JEECMS 9 has SSRF via the ueditor/getRemoteImage.jspx upfile parameter.

Source: CVE-2018-20528