← Back

Nossrf

nossrf

Vendor: Nossrf Project • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2025-2691
1Nossrf Project
1Nossrf
Apr 29, 2026
Mar 23, 2025
7.8 HIGH· v4
9.1 CRITICAL· v3
N/A· v2
Versions of the package nossrf before 1.0.4 are vulnerable to Server-Side Request Forgery (SSRF) where an attacker can provide a hostname that resolves to a local or reserved IP address space and bypass the SSRF protecti...Show more
Versions of the package nossrf before 1.0.4 are vulnerable to Server-Side Request Forgery (SSRF) where an attacker can provide a hostname that resolves to a local or reserved IP address space and bypass the SSRF protection mechanism.Show less