5 matches found
CVE-2025-22952
elestio memos v0.23.0 is vulnerable to Server-Side Request Forgery SSRF due to insufficient validation of user-supplied URLs, which can be exploited to perform SSRF attacks...
CVE-2025-22952
creationtimestamp| type| source ---|---|--- 2025-02-27 21:59:03+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lj6v7znxps25 2025-02-27 23:27:09+00:00| seen| https://t.me/cvedetector/19091 2025-03-04 11:20:50+00:00| confirmed|...
CVE-2025-22952
elestio memos v0.23.0 is vulnerable to Server-Side Request Forgery SSRF due to insufficient validation of user-supplied URLs, which can be exploited to perform SSRF attacks...
CVE-2025-22952
elestio memos v0.23.0 is vulnerable to Server-Side Request Forgery SSRF due to insufficient validation of user-supplied URLs, which can be exploited to perform SSRF attacks...
CVE-2025-22952
Elestio Memos (v0.23.0) is affected by CVE-2025-22952: a Server-Side Request Forgery (SSRF) due to insufficient validation of user-supplied URLs. The Nuclei template confirms the issue as applicable to MEMOS versions up to 0.24.0 and notes that unauthenticated attackers can exploit SSRF to access...