logo

Database

Server-side request forgery (SSRF) In @frangoteam/fuxa

Description

Server-Side Request Forgery in FUXA A Server-Side Request Forgery (SSRF) attack in FUXA 1.1.3 can be carried out leading to the obtaining of sensitive information from the server's internal environment and services, often potentially leading to the attacker executing commands on the server.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

Aliases

1. CVE-2021-458512. NVD-2021-458513. OSV-2021-458514. GCVE-2021-45851

References

1. https://www.youtube.com/watch?v=JE1Kcq3iJpc

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.