PT-2022-14099 · Unknown · Jgraph/Drawio

Name of the Vulnerable Software and Affected Versions: jgraph/drawio versions prior to 18.0.7 Description: The issue is related to Server-Side Request Forgery SSRF in the GitHub repository jgraph/drawio. SSRF is a type of attack where an attacker can trick a server into making requests to interna...

PT-2022-14104 · Unknown · Jgraph/Drawio

Name of the Vulnerable Software and Affected Versions: jgraph/drawio versions prior to 18.0.7 Description: The issue concerns exposure of sensitive information to an unauthorized actor. Recommendations: For versions prior to 18.0.7, update to version 18.0.7 or later to resolve the issue...