2 matches found
CVE-2021-27329
Friendica 2021.01 allows SSRF via parseurl?binurl= for DNS lookups or HTTP requests to arbitrary domain names...
CVE-2021-27329
The issue CVE-2021-27329 affects Friendica 2021.01 and is described as a server-side request forgery (SSRF) vulnerability. The root cause involves parsing a URL parameter parse_url?binurl= which can trigger DNS lookups or HTTP requests to arbitrary domain names. This was reported across multiple ...