3 matches found
CVE-2022-1767 Server-Side Request Forgery (SSRF) in jgraph/drawio
Server-Side Request Forgery SSRF in GitHub repository jgraph/drawio prior to 18.0.7...
CVE-2022-1767 Server-Side Request Forgery (SSRF) in jgraph/drawio
Server-Side Request Forgery SSRF in GitHub repository jgraph/drawio prior to 18.0.7...
CVE-2022-1767
The CVE-2022-1767 instance concerns a Server-Side Request Forgery (SSRF) in the GitHub repository jgraph/drawio, affecting versions prior to 18.0.7. Affected component: draw.io server-side handling could be tricked into issuing unintended requests. Impact reported in CVSS: CVSS3.1 base score 7.5 ...