Summary
OpenCTI has Semi-Blind SSRF via Unvalidated External URL in Data Ingestion Feature
References
Related vulnerabilities
All Supply chain →- MEDIUMGHSA-GXG4-2RRR-JHC7
OpenClaw: Hostname checks could treat trailing-dot hosts inconsistently
- LOWGHSA-3MP7-VP6J-2MXX
BBOT: Server-Side Request Forgery (SSRF) in docker_pull module via WWW-Authenticate realm parsing
- HIGHGHSA-WV27-2VQP-J7G5
Gogs has the ability to import local repositories via Mirror Settings
- HIGHGHSA-GFQ7-5X4G-3XHF
@budibase/backend-core has potential SSRF DNS rebinding bypass in outbound fetch validation
- HIGHGHSA-4Q6H-8P4V-67VQ
Budibase: SSRF via OAuth2 token endpoint URL reaches internal hosts and cloud metadata
- MEDIUMGHSA-C4V7-XG93-QF8G
Gogs has SSRF in webhook deliveries