27Eyl
Possible SSRF in image tag that takes (partial) user input?
A webapp has an img tag that partially takes userinput like so:
<img src="/blah/blah/$USERINPUT.jpg">
where the first / is from the root of the domain.
Could there be a vulnerability here? Potentially using ../
and then attempting path traversal?