Filtered by vendor Barassistant Subscriptions
Filtered by product Bar Assistant Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-49471 1 Barassistant 1 Bar Assistant 2024-11-21 8.8 High
Blind Server-Side Request Forgery (SSRF) vulnerability in karlomikus Bar Assistant before version 3.2.0 does not validate a parameter before making a request through Image::make(), which could allow authenticated remote attackers to execute arbitrary code.