Telegram CVE-2018-20436 Server Side Request Forgery Security Bypass Vulnerability

Bugtraq ID:	106322
Class:	Input Validation Error
CVE:	CVE-2018-20436
Remote:	Yes
Local:	No
Published:	Dec 02 2018 12:00AM
Updated:	Dec 02 2018 12:00AM
Credit:	Capitan_alfa
Vulnerable:	Telegram Telegram Web 0.7 Telegram Telegram for Android 4.9.1
Not Vulnerable:

Telegram CVE-2018-20436 Server Side Request Forgery Security Bypass Vulnerability

The researcher has created a proof-of-concept to demonstrate the issue. Please see the references for more information.