Lucene search
HistorySep 14, 2022 - 11:15 a.m.
CVE-2022-2900
github
ssrf
repository
ionicabizau
parse-url
CVSS3
9.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
EPSS
0.002
Percentile
51.4%
Server-Side Request Forgery (SSRF) in GitHub repository ionicabizau/parse-url prior to 8.1.0.
Affected configurations
Node
parse-url_projectparse-urlRange<8.1.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| parse-url_project | parse-url | * | cpe:2.3:a:parse-url_project:parse-url:*:*:*:*:*:*:*:* |
Related
veracode
veracode
Server-Side Request Forgery (SSRF)
2022-09-15 06:35:25
osv
osv
CVE-2022-2900
2022-09-14 11:15:47
github
github
cvelist
cvelist
CVE-2022-2900 Server-Side Request Forgery (SSRF) in ionicabizau/parse-url
2022-09-14 08:30:13
prion
prion
Server side request forgery (ssrf)
2022-09-14 11:15:00
huntr
huntr
parser bypass and make SSRF attack
2022-08-03 11:54:37
cve
cve
CVE-2022-2900
2022-09-14 11:15:47
CVSS3
9.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
EPSS
0.002
Percentile
51.4%
Related for NVD:CVE-2022-2900