CVE-2024-34453

Published May 3rd, 2024

View on NVD ↗

CVSS v3

4.3

MEDIUM

CVSS v2

N/A

Affected

PROJECT

Description

TwoNav 2.1.13 contains an SSRF vulnerability via the url paramater to index.php?c=api&method=read_data&type=connectivity_test (which reaches /system/api.php).

tznb1/TwoNav

TwoNav 第二代云导航|云书签管理系统

GitHub

452