Ricardo Nunes

Name of the Vulnerable Software and Affected Versions: OutSystems Platform Server versions 10.0.0 through 10.0.1103.0 OutSystems Platform Server versions 11.0.0 through 11.8.0 LifeTime management console versions prior to 11.7.0 Description: The issue allows for Server-Side Request Forgery (SSRF) which enables arbitrary outbound HTTP requests. This can potentially be exploited to access internal resources or make unauthorized requests. Recommendations: For OutSystems Platform Server versions 10.0.0 through 10.0.1103.0, update to version 10.0.1104.0 or later. For OutSystems Platform Server versions 11.0.0 through 11.8.0, update to version 11.9.0 or later. For LifeTime management console versions prior to 11.7.0, update to version 11.7.0 or later.