CVE-2024-39338 | axios 1.7.2 Relative URL server-side request forgery

Inserito da Angelo Barbosa | Ago 9, 2024 | CVE

A vulnerability was found in axios 1.7.2 and classified as critical. Affected by this issue is some unknown functionality of the component Relative URL Handler. The manipulation leads to server-side request forgery.

This vulnerability is handled as CVE-2024-39338. The attack needs to be initiated within the local network. There is no exploit available.

CVE-2024-39338 | axios 1.7.2 Relative URL server-side request forgery

Post correlati

CVE-2024-32345 | CMSimple 5.15 Language Section Configuration cross site scripting

CVE-2023-5400 | Honeywell Experion Server heap-based overflow

CVE-2023-32196 | Rancher External RoleTemplates privileges management

CVE-2024-1475 | Coming Soon Maintenance Mode Plugin up to 1.0.5 on WordPress information disclosure