First published: Fri Apr 02 2021(Updated: )
Because of no validation on a curl command in MagpieRSS 0.72 in the /extlib/Snoopy.class.inc file, when you send a request to the /scripts/magpie_debug.php or /scripts/magpie_simple.php page, it's possible to request any internal page if you use a https request.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Magpierss Project Magpierss | =0.72 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.