2020-07-15 20:04:57
mitre
PUBLISHED
Harbor prior to 2.0.1 allows SSRF with this limitation: an attacker with the ability to edit projects can scan ports of hosts accessible on the Harbor servers intranet.