CVE-2025-34228

Vasion Print (formerly PrinterLogic) SSRF in VA/VA SaaS before 25.1.102 (Host) and before 25.1.1413 (Application). The issue arises from unauthenticated access to /var/www/app/console_release/lexmark/update.php, which builds URLs from user-controlled values and forwards requests via curl_exec() o...