The Recurly Client Python Library before 2.0.5, 2.1.16, 2.2.22, 2.3.1, 2.4.5, 2.5.1, 2.6.2 is vulnerable to a Server-Side Request Forgery vulnerability in the "Resource.get" method that could result in compromise of API keys or other critical resources.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: hackerone
Published: 2017-11-13T17:00:00Z
Updated: 2024-09-17T00:50:41.168Z
Reserved: 2016-11-30T00:00:00
Link: CVE-2017-0906
Vulnrichment
No data.
NVD
Status : Modified
Published: 2017-11-13T17:29:00.457
Modified: 2024-11-21T03:03:52.240
Link: CVE-2017-0906
Redhat
No data.