漏洞描述
Keycloak是一个身份认证系统,该系统<= 12.0.1版本存在SSRF漏洞
Keycloak <= 12.0.1存在SSRF漏洞(CVE-2020-10770)
PoC代码
暂无相关漏洞推荐
-
CVE-2020-10770: Keycloak <= 12.0.1 - request_uri Blind Server-Side Request Forgery (SSRF) POC
2025-08-01 | KeycloakKeycloak 12.0.1 and below allows an attacker to force the server to request an unverified URL using ... -
CVE-2020-27838: KeyCloak - Information Exposure POC
2025-08-01 | KeyCloakA flaw was found in keycloak in versions prior to 13.0.0. The client registration endpoint allows fe... -
CVE-2021-20323: Keycloak 10.0.0 - 18.0.0 - Cross-Site Scripting POC
2025-08-01 | KeycloakKeycloak 10.0.0 to 18.0.0 contains a cross-site scripting vulnerability via the client-registrations... -
CVE-2020-10199: Nexus Repository before 3.21.2 allows JavaEL Injection POC
2025-09-01 | Nexus Repository漏洞触发需要任意账户权限 body="Nexus Repository Manager" app="Nexus-Repository-Manager" -
CVE-2020-11455: LimeSurvey 4.1.11 - Path Traversal POC
2025-09-01 | LimeSurveyLimeSurvey before 4.1.12+200324 contains a path traversal vulnerability in application/controllers/a...