Halo before 1.2.0-beta.1 Server-Side Request Forgery (SSRF) Vulnerability

Summary

Halo before 1.2.0-beta.1 suffers from server-side request forgery (SSRF) vulnerability

Credit:

The information has been provided by Vendor

The original article can be found at:https://github.com/halo-dev/halo/compare/v1.1.3-beta.2…v1.2.0-beta.1


Details

Halo before 1.2.0-beta.1 allows Server Side Template Injection (SSTI) because TemplateClassResolver.SAFER_RESOLVER is not used in the FreeMarker configuration.

 

Vulnerable Systems:

Halo before 1.2.0-beta.1

 

CVE Information:

CVE-2019-19999

 

Disclosure Timeline:
Published Date:12/25/2019

Categories: News