CVE-2023-24622 Information

Description

isInList in the safeurl-python package before 1.2 for Python has an insufficiently restrictive regular expression for external domains leading to SSRF.

Reference

https://github.com/IncludeSecurity/safeurl-python/security/advisories/GHSA-jgh8-vchw-q3g7 https://github.com/IncludeSecurity/safeurl-python/security/advisories/GHSA-jgh8-vchw-q3g7 isInList in the safeurl-python package before 1.2 for Python has an insufficiently restrictive regular expression for external domains leading to SSRF.