Description
Axios NPM package 0.21.0 contains a Server-Side Request Forgery (SSRF) vulnerability where an attacker is able to bypass a proxy by providing a URL that responds with a redirect to a restricted host or IP address.
Remediation
References
Related Vulnerabilities
WordPress Plugin Per page add to head Cross-Site Scripting (1.4.4)
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2011-4281)
OpenSSL Numeric Errors Vulnerability (CVE-2007-5135)
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-9015)
WordPress Plugin WP-Members Membership Cross-Site Scripting (3.1.4.1)