CVE-2022-43984

Posted on 2022년 11월 26일2022년 11월 26일 by admin

CVE-2022-43984

Browsershot version 3.57.3 allows an external attacker to remotely obtain arbitrary local files. This is possible because the application does not validate that the JS content imported from an external source passed to the Browsershot::html method does not contain URLs that use the file:// protocol.

Source: CVE-2022-43984

답글 남기기 응답 취소