A vulnerability was found in Mealie up to 1.3.x and classified as problematic. Affected by this issue is the function
scrape_image
. The manipulation leads to server-side request forgery.
This vulnerability is handled as CVE-2024-31993. The attack can only be initiated within the local network. There is no exploit available.
It is recommended to upgrade the affected component.