CVE-2020-22983

EPSS 2.20% · P85 Updated Feb 24, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-22983

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

A Server-Side Request Forgery (SSRF) vulnerability exists in MicroStrategy Web SDK 11.1 and earlier, allows remote unauthenticated attackers to conduct a server-side request forgery (SSRF) attack via the srcURL parameter to the shortURL task.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

MicroStrategy Web SDK 代码问题漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

MicroStrategy Web SDK是美国MicroStrategy公司的一个 JavaScript 库。与不同的 CARTO API 交互，以在 deck.gl 之上构建利用矢量渲染的自定义应用程序。 MicroStrategy Web SDK 11.1 版本及其之前版本存在安全漏洞，该漏洞源于srcURL缺少对于身份的验证和数据过滤。未经身份验证的攻击者利用该漏洞可以通过 srcURL 参数对 shortURL 任务进行服务器端请求伪造 (SSRF) 攻击

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2020-22983

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-22983

请登录查看更多情报信息。

http://microstrategy.comx_refsource_MISC
https://medium.com/%40win3zz/how-i-made-31500-by-submitting-a-bug-to-facebook-d31bb046e204x_refsource_MISC
http://www.yourcompany.com:8080/MicroStrategy/servlet/taskProcx_refsource_MISC
https://tinyurl.com/x_refsource_MISC
https://www.microstrategy.com/us/report-a-security-vulnerabilityx_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2020-22983

Same Patch Batch · n/a · 2022-05-13 · 49 CVEs total

CVE-2022-25865	8.1 HIGH	Command Injection
CVE-2022-21190	7.5 HIGH	Prototype Pollution
CVE-2022-25862	4.0 MEDIUM	Prototype Pollution
CVE-2021-42969		Anaconda3 操作系统命令注入漏洞
CVE-2022-30396		Merchandise Online Store SQL注入漏洞
CVE-2022-30374		Air Cargo Management System SQL注入漏洞
CVE-2022-30370		Air Cargo Management System SQL注入漏洞
CVE-2022-30372		Air Cargo Management System SQL注入漏洞
CVE-2022-30371		Air Cargo Management System SQL注入漏洞
CVE-2022-30373		Air Cargo Management System SQL注入漏洞
CVE-2022-30378		Simple Social Networking Site SQL注入漏洞
CVE-2022-30376		Simple Social Networking Site SQL注入漏洞
CVE-2022-30375		Simple Social Networking Site 安全漏洞
CVE-2022-30403		Merchandise Online Store SQL注入漏洞
CVE-2022-30402		Merchandise Online Store SQL注入漏洞
CVE-2022-30401		Merchandise Online Store SQL注入漏洞
CVE-2022-30400		Merchandise Online Store SQL注入漏洞
CVE-2022-30399		Merchandise Online Store SQL注入漏洞
CVE-2022-30398		Merchandise Online Store SQL注入漏洞
CVE-2021-42967		novel-plus 代码问题漏洞

Showing top 20 of 49 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2020-22983

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2020-22983

I. Basic Information for CVE-2020-22983

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-22983

III. Intelligence Information for CVE-2020-22983

Same Patch Batch · n/a · 2022-05-13 · 49 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2020-22983

Leave a comment