CVE-2024-52588 – Strapi SSRF Vulnerability

CVE ID : CVE-2024-52588

Published : May 29, 2025, 9:15 a.m. | 33 minutes ago

Description : Strapi is an open-source content management system. Prior to version 4.25.2, inputting a local domain into the Webhooks URL field leads to the application fetching itself, resulting in a server side request forgery (SSRF). This issue has been patched in version 4.25.2.

Severity: 4.9 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…