Lucene search
HackeroneCVELIST:CVE-2017-0906HistoryNov 06, 2017 - 12:00 a.m.
CVE-2017-0906
2017-11-0600:00:00
CWE-918
hackerone
www.cve.org
The Recurly Client Python Library before 2.0.5, 2.1.16, 2.2.22, 2.3.1, 2.4.5, 2.5.1, 2.6.2 is vulnerable to a Server-Side Request Forgery vulnerability in the “Resource.get” method that could result in compromise of API keys or other critical resources.
CNA Affected
[
{
"product": "recurly python module",
"vendor": "Recurly",
"versions": [
{
"status": "affected",
"version": "Versions before 2.0.5, 2.1.16, 2.2.22, 2.3.1, 2.4.5, 2.5.1, 2.6.2"
}
]
}
]Related
cve
cve
CVE-2017-0906
2017-11-13 17:29:00
osv
osv
CVE-2017-0906
2017-11-13 17:29:00
Recurly vulnerable to SSRF
2019-01-04 17:48:09
PYSEC-2017-68
2017-11-13 17:29:00
prion
prion
Server side request forgery (ssrf)
2017-11-13 17:29:00
nvd
nvd
CVE-2017-0906
2017-11-13 17:29:00
veracode
veracode
Server-side Request Forgery (SSRF)
2017-11-14 09:30:11
github
github
Recurly vulnerable to SSRF
2019-01-04 17:48:09