CVE-2022-40296 Information

Description

The application was vulnerable to a Server-Side Request Forgery attacks allowing the backend server to interact with unexpected endpoints potentially including internal and local services leading to attacks in other downstream systems.

Reference

https://www.themissinglink.com.au/security-advisories/cve-2022-40296