Server Side Request Forgery

Description

SSRF as in Server Side Request Forgery is a vulnerability that allows an attacker to force server interfaces into sending packets initiated by the victim server to the local interface or to another server behind the firewall. Consult Web References for more information about this problem.

ShareShare on FacebookTweet about this on TwitterShare on Google+

Impact
The impact varies according to the affected server interface.

Recommendation
Your script should properly sanitize user input.

References
SSRF VS. BUSINESS-CRITICAL APPLICATIONS