Filtered by vendor Link-preview-js Project
Subscriptions
Total
1 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2022-25876 | 1 Link-preview-js Project | 1 Link-preview-js | 2024-09-17 | 6.2 Medium |
The package link-preview-js before 2.1.16 are vulnerable to Server-side Request Forgery (SSRF) which allows attackers to send arbitrary requests to the local network and read the response. This is due to flawed DNS rebinding protection. |
Page 1 of 1.