CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Strapi: >> Strapi >> 4.25.0 Security Vulnerabilities

CVE-2024-52588

Strapi is an open-source content management system. Prior to version 4.25.2, inputting a local domain into the Webhooks URL field leads to the application fetching itself, resulting in a server side request forgery (SSRF). This issue has been patched in version 4.25.2.

CVSS Score

4.9

EPSS Score

0.0

Published

2025-05-29

Page 1

Vulnerabilities

Vulnerable Software

Strapi: >> Strapi >> 4.25.0 Security Vulnerabilities

Products

Pricing

Contact Us