daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update CVE-2020-10770.yaml

patch-1
Ritik Chaddha 2023-02-11 10:29:02 +05:30 committed by GitHub
parent 8d26b3fea5
commit 031b9ba1b4
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
cves/2020/CVE-2020-10770.yaml
View File

@ -1,7 +1,7 @@
id: CVE-2020-10770
info:
name: Keycloak <= 12.0.1 - request_uri blind Server-Side Request Forgery (SSRF)
name: Keycloak <= 12.0.1 - request_uri Blind Server-Side Request Forgery (SSRF)
author: dhiyaneshDk
severity: medium
description: Keycloak 12.0.1 and below allows an attacker to force the server to request an unverified URL using the OIDC parameter request_uri. This allows an attacker to execute a server-side request forgery (SSRF) attack.