Description
A reverse proxy or the web application uses values of an HTTP request to route the request. It leads to SSRF vulnerability. SSRF as in Server Side Request Forgery is a vulnerability that allows an attacker to force a server into sending packets to the local interface or to another server behind the firewall. Consult Web References for more information about this problem. This script could generate false positive alerts if the scanner is configured to use an HTTP-proxy.
Remediation
Properly sanitize user requests or use a special sandboxed host to route requests to remote resources
References
Cracking the lens: targeting HTTP's hidden attack-surface
Related Vulnerabilities
WordPress Plugin Mapplic-Custom Interactive Map Server-Side Request Forgery (6.1)
XML external entity injection via File Upload
WordPress Plugin PhonePe Payment Solutions Server-Side Request Forgery (1.0.15)
SAML Consumer Service XSLT injection
XXE in Ivanti Connect Secure, Policy Secure and Neurons (CVE-2024-22024)