3 matches found
CVE-2021-44659
creationtimestamp| type| source ---|---|--- 2021-12-22 20:18:18+00:00| seen| https://t.me/cibsecurity/34508 2021-12-23 04:24:58+00:00| published-proof-of-concept| https://t.me/BlueRedTeam/1558 2021-12-23 11:12:01+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/5038...
CVE-2021-44659
Adding a new pipeline in GoCD server version 21.3.0 has a functionality that could be abused to do an un-intended action in order to achieve a Server Side Request Forgery SSRF. NOTE: the vendor's position is that the observed behavior is not a vulnerability, because the product's design allows an...
CVE-2021-44659
GoCD server version 21.3.0 contains a possible Server Side Request Forgery (SSRF) when adding a new pipeline. The issue stems from how outbound requests are handled/validated, with multiple connected sources attributing the vulnerability to inadequate input validation and configuration of outboun...