CVE-2022-25876

Posted on by admin

CVE-2022-25876

The package link-preview-js before 2.1.16 are vulnerable to Server-side Request Forgery (SSRF) which allows attackers to send arbitrary requests to the local network and read the response. This is due to flawed DNS rebinding protection.

Source: CVE-2022-25876

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다