CRITICAL🇵🇱 Wersja polska

CVE-2022-2900

CVSS 9.1v3.1pub. 2022-09-14upd. 2024-11-21

Server-Side Request Forgery (SSRF) in GitHub repository ionicabizau/parse-url prior to 8.1.0.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
  • Parse Url Project Parse Url

    APP
    Parse-Url Project
    < 8.1.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
SSRF
CWE
References

Related vulnerabilities

CVE-2022-2216CRITICAL9.8ten sam produkt

Server-Side Request Forgery (SSRF) in GitHub repository ionicabizau/parse-url prior to 7.0.0.

CVE-2022-0722HIGH7.5ten sam produkt

Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository ionicabizau/parse-url prior to...

CVE-2022-3224MEDIUM6.1ten sam produkt

Misinterpretation of Input in GitHub repository ionicabizau/parse-url prior to 8.1.0.

CVE-2022-2217MEDIUM6.1ten sam produkt

Cross-site Scripting (XSS) - Generic in GitHub repository ionicabizau/parse-url prior to 7.0.0.

CVE-2022-2218MEDIUM6.1ten sam produkt

Cross-site Scripting (XSS) - Stored in GitHub repository ionicabizau/parse-url prior to 7.0.0.