CVE-2025-27152 | axios up to 1.8.1 URL server-side request forgery

Inserito da Angelo Barbosa | Mar 7, 2025 | CVE

A vulnerability was found in axios up to 1.8.1. It has been classified as critical. Affected is an unknown function of the component URL Handler. The manipulation leads to server-side request forgery.

This vulnerability is traded as CVE-2025-27152. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-27152 | axios up to 1.8.1 URL server-side request forgery

Post correlati

CVE-2024-31804 | Terratec DMX_6Fire USB 1.23.0.02 Program.exe unquoted search path (EDB-51977)

CVE-2023-6584 | WP JobSearch Plugin up to 2.3.3 on WordPress Email Address improper authentication

CVE-2024-53244 | Splunk Enterprise/Cloud Platform Saved Search /en-US/app/search/report s information disclosure (SVD-2024-1202)

CVE-2024-52547 | Lorex 2K Indoor Wi-Fi Security Camera prior 2.800.0000000.8.R.20241111 DHIP Service out-of-bounds write