CVE-2020-26032
CVE-2020-26032 describes an SSRF in Zammad before 3.4.1. The SMS configuration interface for Massenversand renders the results of a test request to the user, allowing an attacker to trigger a GET request to an arbitrary URL from the server’s network interface, potentially disclosing information f...