The external_request api call in App Studio (millicore) allows server side request forgery (SSRF). An attacker could use this flaw to probe the network internal resources, and access restricted endpoints.
CPE | Name | Operator | Version |
---|---|---|---|
mobile_application_platform | le | 4.4.3 |