The Recurly Client Python Library before 2.0.5, 2.1.16, 2.2.22, 2.3.1, 2.4.5, 2.5.1, 2.6.2 is vulnerable to a Server-Side Request Forgery vulnerability in the "Resource.get" method that could result in compromise of API keys or other critical resources.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: hackerone

Published: 2017-11-13T17:00:00Z

Updated: 2024-09-17T00:50:41.168Z

Reserved: 2016-11-30T00:00:00

Link: CVE-2017-0906

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2017-11-13T17:29:00.457

Modified: 2024-11-21T03:03:52.240

Link: CVE-2017-0906

cve-icon Redhat

No data.