TinyCheck before commits 9fd360d and ea53de8 allowed an authenticated attacker to send an HTTP GET request to the crafted URLs.
References
Link | Resource |
---|---|
https://github.com/KasperskyLab/TinyCheck/security/advisories/GHSA-gqpw-3669-6w5h | Patch Third Party Advisory |
Configurations
Information
Published : 2021-01-26 10:15
Updated : 2021-02-02 11:35
NVD link : CVE-2020-36200
Mitre link : CVE-2020-36200
JSON object : View
CWE
CWE-918
Server-Side Request Forgery (SSRF)
Products Affected
kaspersky
- tinycheck