.avif)
View all vulnerabilities
CVE-2024-39338
Server-Side Request Forgery in axios
Description
axios 1.7.2 allows SSRF via unexpected behavior where requests for path relative URLs get processed as protocol relative URLs.
Patch Available
Fix available through Seal Security. No upgrade required, protect your application instantly.
Fix without upgradingVulnerability Details
Score
Score Vector
Affected Versions
axios >= 1.3.2 < 1.7.4
Severity
Ecosystem
JavaScript
Publish Date
August 12, 2024
Modified Date
August 13, 2024