All versions of the package github.com/greenpau/caddy-security are vulnerable to Server-side Request Forgery (SSRF) via X-Forwarded-Host header manipulation. An attacker can expose sensitive information, interact with internal services, or exploit other vulnerabilities within the network by exploiting this vulnerability.
{ "github_reviewed_at": "2024-02-20T23:53:06Z", "github_reviewed": true, "nvd_published_at": "2024-02-17T05:15:10Z", "cwe_ids": [ "CWE-918" ], "severity": "MODERATE" }