A new vulnerability was discovered: CVE-2020-28168

Question

A new vulnerability was discovered: CVE-2020-28168

Closed this issue 2 years ago · 0 comments

Axios NPM package 0.21.0 contains a Server-Side Request Forgery (SSRF) vulnerability where an attacker is able to bypass a proxy by providing a URL that responds with a redirect to a restricted host or IP address.

Read more at Debricked: https://app.debricked.com/en/service/vulnerability/185860