Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:40087
HistoryApr 10, 2023 - 2:25 a.m.

Server-side Request Forgery (SSRF)

2023-04-1002:25:37
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
822
server-side request forgery
ssrf
improper validation
api request
admin authenticated attacker
network resources
sensitive information

0.081 Low

EPSS

Percentile

94.4%

JSON

github.com/darklynx/request-baskets is vulnerable to Server-side Request Forgery (SSRF). The vulnerability exists due to the improper validation in the /api/baskets/{name} path, allowing an admin authenticated attacker to access network resources and sensitive information via a maliciously crafted API request.

Related

githubexploit 17
prion 1
nvd 1
osv 2
packetstorm 2
github 1
cvelist 1
zdt 2
cve 1
exploitdb 1
githubexploit
githubexploit
Exploit for Server-Side Request Forgery in Rbaskets Request Baskets
2023-07-26 11:00:59
Exploit for Server-Side Request Forgery in Rbaskets Request Baskets
2023-07-26 15:37:26
Exploit for Server-Side Request Forgery in Rbaskets Request Baskets
2023-12-29 21:10:48
prion
prion
Server side request forgery (ssrf)
2023-03-31 20:15:00
nvd
nvd
CVE-2023-27163
2023-03-31 20:15:07
osv
osv
request-baskets vulnerable to Server-Side Request Forgery
2023-03-31 21:30:39
CVE-2023-27163
2023-03-31 20:15:07
packetstorm
packetstorm
Maltrail 0.53 Remote Code Execution
2023-08-11 00:00:00
Request-Baskets 1.2.1 Server-Side Request Forgery
2023-08-11 00:00:00
github
github
request-baskets vulnerable to Server-Side Request Forgery
2023-03-31 21:30:39
cvelist
cvelist
CVE-2023-27163
2023-03-31 00:00:00
zdt
zdt
Request-Baskets v1.2.1 - Server-side request forgery Vulnerability
2023-08-10 00:00:00
Maltrail v0.53 - Unauthenticated Remote Code Execution Exploit
2023-08-10 00:00:00
cve
cve
CVE-2023-27163
2023-03-31 20:15:07
exploitdb
exploitdb
Request-Baskets v1.2.1 - Server-side request forgery (SSRF)
2023-08-10 00:00:00

0.081 Low

EPSS

Percentile

94.4%

JSON
Related for VERACODE:40087
githubexploit17prion1nvd1osv2packetstorm2github1cvelist1zdt2cve1exploitdb1