2023-01-30 00:00:00
mitre
PUBLISHED
Paranoidhttp before 0.3.0 allows SSRF because [::] is equivalent to the 127.0.0.1 address, but does not match the filter for private addresses.