High severityNVD Advisory· Published Mar 3, 2022· Updated Aug 2, 2024
Server-Side Request Forgery (SSRF) in transloadit/uppy
CVE-2022-0528
Description
Server-Side Request Forgery (SSRF) in GitHub repository transloadit/uppy prior to 3.3.1.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
@uppy/companionnpm | < 3.3.1 | 3.3.1 |
Affected products
2- transloadit/transloadit/uppyv5Range: unspecified
Patches
Vulnerability mechanics
References
4- github.com/advisories/GHSA-q24h-5rq3-63j9ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2022-0528ghsaADVISORY
- github.com/transloadit/uppy/commit/267c34045a1e62c98406d8c31261c604a11e544aghsax_refsource_MISCWEB
- huntr.dev/bounties/8b060cc3-2420-468e-8293-b9216620175bghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.