welefen/ssrf-agent

Releases0

Stars20

make http(s) request to prevent SSRF

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2021-23718 ↗	Nov 22, 2021Monday, 22 November 2021, 17:15	6.5 MEDIUM	5 MEDIUM
The package ssrf-agent before 1.0.5 are vulnerable to Server-side Request Forgery (SSRF) via the defaultIpChecker function. It fails to properly validate if the IP requested is private.