Description
A Server-Side Request Forgery (SSRF) attack in FUXA 1.1.3 can be carried out leading to the obtaining of sensitive information from the server's internal environment and services, often potentially leading to the attacker executing commands on the server.
Remediation
References
https://www.youtube.com/watch?v=JE1Kcq3iJpc
Related Vulnerabilities
CVE-2022-45685 Vulnerability in maven package org.codehaus.jettison:jettison
CVE-2022-1330 Vulnerability in npm package fullpage.js
CVE-2022-1243 Vulnerability in maven package org.webjars.npm:urijs
CVE-2021-3163 Vulnerability in npm package quill
CVE-2017-18077 Vulnerability in maven package org.webjars.npm:brace-expansion