RSS   Vulnerabilities for 'Cors-proxy'   RSS

2022-01-21
 
CVE-2021-23664

CWE-918
 

 
The package @isomorphic-git/cors-proxy before 2.7.1 are vulnerable to Server-side Request Forgery (SSRF) due to missing sanitization and validation of the redirection action in middleware.js.

 

 >>> Vendor: Isomorphic-git 2 Products
Isomorphic-git
Cors-proxy


Copyright 2024, cxsecurity.com

 

Back to Top