Description
admin/src/containers/InputModalStepperProvider/index.js in Strapi before 3.2.5 has unwanted /proxy?url= functionality.
Remediation
References
https://github.com/strapi/strapi/releases/tag/v3.2.5
https://github.com/strapi/strapi/pull/8442
Related Vulnerabilities
CVE-2016-5725 Vulnerability in maven package com.jcraft:jsch
CVE-2020-7693 Vulnerability in npm package sockjs
CVE-2020-8840 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind
CVE-2018-12691 Vulnerability in maven package org.onosproject:onos-apps-acl
CVE-2020-15231 Vulnerability in maven package org.mapfish.print:print-lib