CVE-2018-11031

Published
View on NVD ↗
CVSS v3
N/A
CVSS v2
10
HIGH
Affected
1
PROJECT

Description

application/home/controller/debug.php in PHPRAP 1.0.4 through 1.0.8 has SSRF via the /debug URI, as demonstrated by an api[url]=file:////etc/passwd&api[method]=get POST request.

kuafuRace/phprap
kuafuRace/phprap
PHPRAP,是一个PHP轻量级开源API接口文档管理系统,致力于减少前后端沟通成本,提高团队协作开发效率,打造PHP版的RAP。
GitHubGitHub
119