H1-1663788 — Vulnetix

H1-1663788 PUBLISHED

[CVE-2022-35949]: undici.request vulnerable to SSRF using absolute / protocol-relative URL on pathname

Exploit Intelligence

[CVE-2022-35949]: undici.request vulnerable to SSRF using absolute / protocol-relative URL on pathname (hackerone)
[CVE-2022-35949]: undici.request vulnerable to SSRF using absolute / protocol-relative URL on pathname (hackerone)

Timeline

Sep 23, 2022 CVE Published
Sep 23, 2022 PoC Published

References

[CVE-2022-35949]: undici.request vulnerable to SSRF using absolute / protocol-relative URL on pathname advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›