VYPR
Critical severity9.1NVD Advisory· Published Jul 21, 2025· Updated Apr 15, 2026

CVE-2025-52362

CVE-2025-52362

Description

Server-Side Request Forgery (SSRF) vulnerability exists in the URL processing functionality of PHProxy version 1.1.1 and prior. The input validation for the _proxurl parameter can be bypassed, allowing a remote, unauthenticated attacker to submit a specially crafted URL

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Phproxy/Phproxyreferences2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: <=1.1.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.