Home

Description

A Server-Side Request Forgery (SSRF) vulnerability has been identified in eladmin 2.7 and earlier in ServerDeployController.java. The manipulation of the HTTP Body ip parameter leads to SSRF.

PUBLISHED Reserved 2024-10-28 | Published 2024-10-30 | Updated 2024-10-31 | Assigner mitre

References

github.com/shadia0/Patienc/blob/main/eladmin_ssrf.md

cve.org (CVE-2024-51242)

nvd.nist.gov (CVE-2024-51242)

Download JSON