Vulnerabilities > CVE-2021-27329 - Server-Side Request Forgery (SSRF) vulnerability in Frendi Frendica 2021.01
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
Friendica 2021.01 allows SSRF via parse_url?binurl= for DNS lookups or HTTP requests to arbitrary domain names.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |