Vulnerabilities > CVE-2021-27329 - Server-Side Request Forgery (SSRF) vulnerability in Frendi Frendica 2021.01
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Friendica 2021.01 allows SSRF via parse_url?binurl= for DNS lookups or HTTP requests to arbitrary domain names.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |