Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[GHSA-78xj-cgh5-2h22] NPM IP package vulnerable to Server-Side Request Forgery (SSRF) attacks #3554

Conversation

fshenton
Copy link

Updates

  • Affected products

Comments
indutny/node-ip#138 (comment)

@fshenton
Copy link
Author

fshenton commented Feb 19, 2024

Not sure what the usual process is but wanted to help push things along if i could :)

@github-actions github-actions bot changed the base branch from main to fshenton/advisory-improvement-3554 February 19, 2024 11:10
@nchevsky
Copy link

This should be closed in favor of #3553, which covers both the v1.x and v2.x branches.

@JonathanLEvans
Copy link

Closing this in favor of #3553.

@github-actions github-actions bot deleted the fshenton-GHSA-78xj-cgh5-2h22 branch February 20, 2024 18:34
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants