Description
A Server-Side Request Forgery (SSRF) attack in FUXA 1.1.3 can be carried out leading to the obtaining of sensitive information from the server's internal environment and services, often potentially leading to the attacker executing commands on the server.
Remediation
References
https://www.youtube.com/watch?v=JE1Kcq3iJpc
Related Vulnerabilities
CVE-2019-10742 Vulnerability in npm package axios
CVE-2020-7656 Vulnerability in maven package org.webjars.bowergithub.jquery:jquery
CVE-2022-25231 Vulnerability in npm package node-opcua
CVE-2021-28918 Vulnerability in npm package netmask
CVE-2022-31129 Vulnerability in maven package org.webjars:momentjs