2 matches found
apetest (>=0.1.0 <=0.1.1), mccole (>=0.2.0 <=5.8.0) potentially affected by CVE-2025-15104 via html5validator (>=0.3.3 <=0.4.2)
html5validator PYPI version =0.3.3, =0.1.0, =0.2.0, =5.8.0 Source cves: CVE-2025-15104 Source advisory: SNYK:PYTHON-HTML5VALIDATOR-15010792...
Server-side Request Forgery (SSRF)
Overview html5validator is a Validate HTML5 files. Affected versions of this package are vulnerable to Server-side Request Forgery SSRF due to the improper implementation of localhost bypass protection. An attacker can cause the server to initiate arbitrary HTTP or HTTPS requests to internal...