Description
A Server-Side Request Forgery (SSRF) attack in FUXA 1.1.3 can be carried out leading to the obtaining of sensitive information from the server's internal environment and services, often potentially leading to the attacker executing commands on the server.
Remediation
References
https://www.youtube.com/watch?v=JE1Kcq3iJpc
Related Vulnerabilities
CVE-2020-12642 Vulnerability in maven package com.epam.reportportal:service-api
CVE-2022-25867 Vulnerability in maven package io.socket:socket.io-client
CVE-2020-11022 Vulnerability in maven package org.webjars.bowergithub.jquery:jquery
CVE-2022-25962 Vulnerability in npm package vagrant.js
CVE-2022-41881 Vulnerability in maven package io.netty:netty-codec-haproxy