Medium severity6.5NVD Advisory· Published Jul 6, 2017· Updated Jun 17, 2026
CVE-2017-10973
CVE-2017-10973
Description
In FineCMS before 2017-07-06, application/lib/ajax/get_image_data.php has SSRF, related to requests for non-image files with a modified HTTP Host header.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:finecms_project:finecms:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:finecms_project:finecms:*:*:*:*:*:*:*:*range: <=2017-05-12
- (no CPE)range: <2017-07-06
Patches
Vulnerability mechanics
References
2- github.com/andrzuk/FineCMS/pull/10nvdThird Party Advisory
- github.com/andrzuk/FineCMS/pull/11nvdThird Party Advisory
News mentions
0No linked articles in our index yet.