Ssrf SSRF

Server-Side Request Forgery occur when a web server executes a request to a user supplied destination parameter that is not validated. Such vulnerabilities could allow an attacker to access internal services or to launch attacks from your web server.

IndexedPublic repositoryHighMedium confidenceVerifiedLGPL-3.0-onlykotlin

greprules fetch gitlab-sast-rules-lgpl-kotlin-ssrf-rule-ssrf --engine opengrep

Description

Server-Side Request Forgery occur when a web server executes a request to a user supplied destination parameter that is not validated. Such vulnerabilities could allow an attacker to access internal services or to launch attacks from your web server.

Detection target

Not provided

Recommended fix

Not provided

False-positive notes

Not provided

License: LGPL-3.0-only
Source context: Public repository
Source: https://gitlab.com/gitlab-org/security-products/sast-rules
Validation status: Verified
Trust signals: 100 downloads
0 direct100 via packs
· 0 stars · Trust score 91How trust works
Included packs: 2 packs

Community feedback

Sign in to report false positives, mark this rule useful, or suggest metadata improvements.

Mark useful Report false positive Suggest metadata