Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An Unauthenticated Server-Side Request Forgery (SSRF) vulnerability exists in Inim Electronics Smartliving SmartLAN/G/SI <=6.x within the GetImage functionality. The application parses user supplied data in the GET parameter 'host' to construct an image request to the service through onvif.cgi. Since no validation is carried out on the parameter, an attacker can specify an external domain and force the application to make an HTTP request to an arbitrary destination host.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
INIM ELECTRONICS SmartLiving System 代码问题漏洞
Vulnerability Description
INIM ELECTRONICS SmartLiving System是意大利INIM ELECTRONICS公司的一个应用系统。一个智能生活系统。 INIM ELECTRONICS SmartLiving System 存在安全漏洞,该漏洞源于对参数不进行验证,攻击者可利用该漏洞可以指定外部域并强制应用程序向任意目标主机发出HTTP请求。
CVSS Information
N/A
Vulnerability Type
N/A