Kylart/MalScraper

high vulnerability

Closed this issue 4 years ago · 2 comments

aikozijlemans commented 4 years ago

High Server-Side Request Forgery

Package axios

Patched in >=0.21.1

Dependency of mal-scraper

Path mal-scraper > axios

More info https://npmjs.com/advisories/1594

Yaroster commented 4 years ago

axios/axios@c7329fe

Here's how to preven SSRF in axios.

Kylart commented 4 years ago

This is updated and deployed in v2.11.3