PT-2024-26581 · Unknown · Ninja Tables
Yuchen Ji
·
Published
2024-06-03
·
Updated
2025-04-03
·
CVE-2024-35635
CVSS v3.1
4.9
Medium
| Vector | AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Ninja Tables versions through 5.0.9
Description
A Server-Side Request Forgery (SSRF) issue has been identified. This allows an attacker to trick the server into making unintended requests, potentially leading to unauthorized access to sensitive data or systems.
Recommendations
Update to a version later than 5.0.9 to resolve the issue.
As a temporary workaround, consider restricting access to sensitive resources that could be exploited through SSRF until a patch is available.
Fix
SSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ninja Tables