Lucene search
HistoryJun 20, 2024 - 7:15 p.m.
CVE-2024-37818
strapi_v4.24.4
ssrf_vulnerability
server-side_request_forgery
open_ports_access
crafted_get_request
Strapi v4.24.4 was discovered to contain a Server-Side Request Forgery (SSRF) via the component /strapi.io/_next/image. This vulnerability allows attackers to scan for open ports or access sensitive information via a crafted GET request.
Related
cvelist
cvelist
CVE-2024-37818
2024-06-20 00:00:00
veracode
veracode
Server Side Request Forgery
2024-06-21 13:24:55
nvd
nvd
CVE-2024-37818
2024-06-20 19:15:50