maride/hacktricks

mirror of https://github.com/HackTricks-wiki/hacktricks.git synced 2025-10-10 18:36:50 +00:00

HackTricks News Bot c3f4c8eaf6 Add content from: SugarCRM ≤ 14.0.0 (css/preview) LESS Code Injection Vulnerab...

2025-07-14 12:40:51 +00:00

439 B

Raw Blame History

SSRF Vulnerable Platforms

{{#include ../../banners/hacktricks-training.md}}

Check https://blog.assetnote.io/2021/01/13/blind-ssrf-chains/

SugarCRM ≤ 14.0.0 – LESS @import injection in /rest/v10/css/preview enables unauthenticated SSRF & local file read.

{{#ref}} ../less-code-injection-ssrf.md {{#endref}}

{{#include ../../banners/hacktricks-training.md}}