CVE-2024-52588 | Strapi up to 4.25.1 Webhooks URL server-side request forgery (GHSA-v8wj-f5c7-pvxf)

Inserito da Angelo Barbosa | Mag 29, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in Strapi up to 4.25.1. Affected by this issue is some unknown functionality of the component Webhooks URL Handler. The manipulation leads to server-side request forgery.

This vulnerability is handled as CVE-2024-52588. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-52588 | Strapi up to 4.25.1 Webhooks URL server-side request forgery (GHSA-v8wj-f5c7-pvxf)

Post correlati

CVE-2024-55231 | PHPGurukul Online Notes Sharing Management System 1.0 edit-notes.php authorization

CVE-2024-56203 | George Holmes II Wayne Audio Player Plugin up to 1.0 on WordPress cross-site request forgery

CVE-2024-11176 | M-Files Aino up to 24.9 calculation

CVE-2023-7002 | Backup Migration Plugin up to 1.3.9 on WordPress URL os command injection