{"uuid": "08c4aa8c-b172-447a-b3b3-83e55f775c14", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31188", "type": "published-proof-of-concept", "source": "https://t.me/BugCod3/93", "content": "CVAT 2.0 - SSRF (Server Side Request Forgery)\n\n\ud83d\uddc2 Description:\n#CVAT is an opensource interactive video and image annotation tool for computer vision. Versions prior to 2.0.0 were found to be subject to a Server-side request forgery (SSRF) vulnerability. \n#Validation has been added to urls used in the affected code path in version 2.0.0. Users are advised to upgrade.\n\n\u2328 Type: webapps \n\n\ud83d\udcbb Platform: Python\n\n\ud83c\udf10 Vendor Homepage: \ud83c\udf10Github\n\n\ud83d\udee1 Tested On: Version 1.7.0 - Ubuntu 20.04.4 LTS (GNU/Linux 5.4.0-122-generic x86_64)\n\n\ud83d\udc51 CVE: CVE-2022-31188\n\n#CVE #SSRF #Exploit #Python\n\u2797\u2797\u2797\u2797\u2797\u2797\u2797\u2797\u2797\u2797\u2797\u2797\n\ud83d\udc64 T.me/MRvirusIRBOT \n\ud83d\udce2 T.me/SashClient\n\ud83e\udea9 Https://discord.gg/UfFvDYBBMM \n\ud83c\udf10 Https://sash.mybin.ir", "creation_timestamp": "2023-02-01T02:23:35.000000Z"}