Security Advisory
CVE-2021-39497
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
eyoucms 1.5.4 lacks sanitization of input data, allowing an attacker to inject a url to trigger blind SSRF via the saveRemote() function.