Security Advisory

CVE-2022-28090

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-05-04 13:06:04

Last updated 2024-08-03 05:48:36

Assigner mitre

State PUBLISHED

Jspxcms v10.2.0 allows attackers to execute a Server-Side Request Forgery (SSRF) via /cmscp/ext/collect/fetch_url.do?url=.