CVE-2018-20436

The CVE describes a server-side request forgery (SSRF)-like side channel in Telegram's Secret Chat feature. Telegram for Android 4.9.1 and Telegram Web 0.7.0 can cause Telegram servers to issue GET requests to URLs typed while composing a chat message, before the message is sent, plus additional ...