blind-ssrf-chains
blind-ssrf-chains copied to clipboard

assetnote

→

Metadata

An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability

Reame
Issues

Results 3 blind-ssrf-chains issues

Sort by recently updated

Springboot actuators

Hey @infosec-au, I don't saw Springboot actuators in the list, like: ``` /shutdown /actuator/shutdown ``` Any reason for that? Can I submit a PR?

bsysop

What is the impact of Confluence SSRF?

Hello! I found this https://github.com/assetnote/blind-ssrf-chains#confluence in a website... But I am not able to show much impact then DNS and http interactions... Can you help me?

SAGEof6iixPATHS

Add coldfusion SSRF Canary

Coldfusion uses a GET parameter to perform SSRF via LDAP protocol, and also to execute arbitrary code via LDAP deserialization.

elweth-sec

About

An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability

726

Stars

102

Forks

Watchers

Owner

assetnote

← Metadata

726

Stars

102

Forks

Watchers

Owner

assetnote

Metadata

An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability

Back

blind-ssrf-chains blind-ssrf-chains copied to clipboard

Metadata

Springboot actuators

What is the impact of Confluence SSRF?

Add coldfusion SSRF Canary

← Metadata

Owner

Metadata

blind-ssrf-chains
blind-ssrf-chains copied to clipboard