CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda

CVE-2023-6905

CVE-2023-6903

CVE-2023-6904

CVE-2023-3907

Paranoidhttp before 0.3.0 allows SSRF because [::] is equivalent to the 127.0.0.1 address, but does not match the filter for private addresses.

Permalink

**Comparing changes**

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also .

**Open a pull request**

Create a new pull request by comparing changes across two branches. If you need to, you can also .

_base repository:_ hakobe/paranoidhttp _base:_ v0.2.0

_head repository:_ hakobe/paranoidhttp _compare:_ v0.3.0

*   11 commits
*   5 files changed
*   5 contributors

**Commits on Apr 22, 2019**

**Commits on Apr 29, 2019**

**Commits on Jun 27, 2021**

**Commits on Jun 28, 2021**

**Commits on Jan 8, 2022**

**Commits on Jan 14, 2022**

**Commits on Jan 19, 2023**

Headline

CVE-2023-24623: Comparing v0.2.0...v0.3.0 · hakobe/paranoidhttp

CVE: Latest News