MidnightBSD

Advisories for paranoidhttp_project

CVE-2023-24623

Paranoidhttp before 0.3.0 allows SSRF because [::] is equivalent to the 127.0.0.1 address, but does not match the filter for private addresses.

Products Affected

Vendor Product Version
paranoidhttp_project paranoidhttp *