CVEDB API

CVE-2023-30019

imgproxy <=3.14.0 is vulnerable to Server-Side Request Forgery (SSRF) due to a lack of sanitization of the imageURL parameter.

CVSS Score

5.3

EPSS Score

0.562

Published

2023-05-08

CVE-2023-1496

Cross-site Scripting (XSS) - Reflected in GitHub repository imgproxy/imgproxy prior to 3.14.0.

CVSS Score

6.5

EPSS Score

0.154

Published

2023-03-19

Page 1