Lucene search

K
nessusThis script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.WEB_APPLICATION_SCANNING_114122
HistoryDec 06, 2023 - 12:00 a.m.

Appwrite Server-Side Request Forgery

2023-12-0600:00:00
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
2
appwrite
server-side
request forgery
vulnerability
scanner

AI Score

7.5

Confidence

Low

The version of Appwrite installed on the remote contain a Server-Side Request Forgery (SSRF) vulnerability via the component โ€˜/v1/avatars/faviconhostโ€™. Note that the scanner has not tested for these issues but has instead relied only on the applicationโ€™s self-reported version number.

No source data
VendorProductVersionCPE
appwriteappwrite*cpe:2.3:a:appwrite:appwrite:*:*:*:*:*:*:*:*

AI Score

7.5

Confidence

Low