Количество 2
Количество 2
CVE-2025-2691
11 месяцев назад
Versions of the package nossrf before 1.0.4 are vulnerable to Server-Side Request Forgery (SSRF) where an attacker can provide a hostname that resolves to a local or reserved IP address space and bypass the SSRF protection mechanism.
CVSS3: 8.2
EPSS: Низкий
GHSA-vm77-mr48-27wj
11 месяцев назад
nossrf Server-Side Request Forgery (SSRF)
CVSS3: 8.2
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-2691 Versions of the package nossrf before 1.0.4 are vulnerable to Server-Side Request Forgery (SSRF) where an attacker can provide a hostname that resolves to a local or reserved IP address space and bypass the SSRF protection mechanism. | CVSS3: 8.2 | 0% Низкий | 11 месяцев назад |
| GHSA-vm77-mr48-27wj nossrf Server-Side Request Forgery (SSRF) | CVSS3: 8.2 | 0% Низкий | 11 месяцев назад |
Уязвимостей на страницу
20