Description
A Server-Side Request Forgery (SSRF) attack in FUXA 1.1.3 can be carried out leading to the obtaining of sensitive information from the server's internal environment and services, often potentially leading to the attacker executing commands on the server.
Remediation
References
https://www.youtube.com/watch?v=JE1Kcq3iJpc
Related Vulnerabilities
CVE-2018-11694 Vulnerability in npm package node-sass
CVE-2021-3918 Vulnerability in npm package json-schema
CVE-2020-5259 Vulnerability in npm package dojox
CVE-2020-5497 Vulnerability in maven package org.mitre:openid-connect-server-webapp
CVE-2020-4076 Vulnerability in maven package org.webjars.npm:electron