Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
axios Server-Side Request Forgery (SSRF) Vulnerability - CVE-2024-39338 - Vulnerability Database
axios

axios Server-Side Request Forgery (SSRF) Vulnerability - CVE-2024-39338

High
Reference: CVE-2024-39338
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2024-39338
Title: axios Server-Side Request Forgery (SSRF) Vulnerability
Overview:

axios 1.7.2 allows SSRF via unexpected behavior where requests for path relative URLs get processed as protocol relative URLs.