ssrf
CVE-2025-2691: Server-Side Request Forgery (SSRF) Vulnerability in nossrf
Executive Summary CVE-2025-2691 describes a critical Server-Side Request Forgery (SSRF) vulnerability affecting versions of the nossrf Node.js package prior to 1.0.4. This vulnerability allows an attacker to bypass the intended SSRF protection mechanism by providing a hostname that resolves to a local or reserved IP address. Successful