CVE-2024-1063 Information

Description

Appwrite <= v1.4.13 is affected by a Server-Side Request Forgery (SSRF) via the ‘/v1/avatars/favicon’ endpoint due to an incomplete fix of CVE-2023-27159.

Reference

https://www.tenable.com/security/research/tra-2024-03