Security Advisory

CVE-2024-52588

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-05-29 09:02:15
Last updated 2025-05-29 13:44:40
Assigner GitHub_M
State PUBLISHED

Description

Strapi is an open-source content management system. Prior to version 4.25.2, inputting a local domain into the Webhooks URL field leads to the application fetching itself, resulting in a server side request forgery (SSRF). This issue has been patched in version 4.25.2.