3 matches found
CVE-2023-25230
A Server-Side Request Forgery SSRF in loonflow r2.0.14 allows attackers to force the application to make arbitrary requests via manipulation of the hookurl parameter...
CVE-2023-25230
A Server-Side Request Forgery SSRF in loonflow r2.0.14 allows attackers to force the application to make arbitrary requests via manipulation of the hookurl parameter...
CVE-2023-25230
The CVE-2023-25230 SSRF is reported in loonflow r2.0.14. The vulnerability arises from a flaw in the hook_url parameter, allowing an attacker to force the application to make arbitrary external requests. Public sources (e.g., PT-2023-19995, Red Hat, NVD) confirm the issue and describe potential i...