Vulnerabilities > CVE-2023-24623 - Server-Side Request Forgery (SSRF) vulnerability in Paranoidhttp Project Paranoidhttp
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
HIGH Availability impact
NONE Summary
Paranoidhttp before 0.3.0 allows SSRF because [::] is equivalent to the 127.0.0.1 address, but does not match the filter for private addresses.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |