Skip to content

A Server-Side Forgery Request can be activated unmarshalling with XStream to access data streams from an arbitrary URL referencing a resource in an intranet or the local host

Moderate severity GitHub Reviewed Published Mar 13, 2021 in x-stream/xstream • Updated Feb 1, 2023

No closed alerts for this advisory

Give feedback on Dependabot alerts