Medium severity6.5NVD Advisory· Published Dec 28, 2018· Updated Jun 17, 2026
CVE-2018-20528
CVE-2018-20528
Description
JEECMS 9 has SSRF via the ueditor/getRemoteImage.jspx upfile parameter.
Affected products
1Patches
Vulnerability mechanics
References
2- hacker.feiyulive.com/wordpress/index.php/116/nvdPermissions RequiredThird Party Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/154855nvdThird Party Advisory
News mentions
0No linked articles in our index yet.