CVE-2021-22255

Summary

SSRF in URL file upload in Baserow <1.1.0 allows remote authenticated users to retrieve files from the internal server network exposed over HTTP by inserting an internal address.

Affected Software

VendorProductVersion RangeStatus
Baserow B.V.Baserow>0.6.0, <1.1.0affected

Weaknesses

  • Server-side request forgery (ssrf) in Baserow

ADP Enrichment

CVE Program Container

Additional References

References