CVE-2025-52362 Information
Jul 22, 2025
cve
Description
Server-Side Request Forgery (SSRF) vulnerability exists in the URL processing functionality of PHProxy version 1.1.1 and prior. The input validation for the _proxurl parameter can be bypassed allowing a remote unauthenticated attacker to submit a specially crafted URL
Reference
https://gist.github.com/Shulelk/a18c11866be8609b22ff5df780a42422 https://github.com/PHProxy/phproxy Server-Side Request Forgery (SSRF) vulnerability exists in the URL processing functionality of PHProxy version 1.1.1 and prior. The input validation for the _proxurl parameter can be bypassed allowing a remote unauthenticated attacker to submit a specially crafted URL
Related CNNVD
CNNVD-202507-2708 (Published: 2025-07-21)
Share on: