CVE-2023-44469

Posted on by admin

CVE-2023-44469

A Server-Side Request Forgery issue in the OpenID Connect Issuer in LemonLDAP::NG before 2.17.1 allows authenticated remote attackers to send GET requests to arbitrary URLs through the request_uri authorization parameter. This is similar to CVE-2020-10770.

Source: CVE-2023-44469

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다