| Titre | simstudioai sim latest Server-side request forgery |
|---|
| Description | The GET function in the components apps/sim/app/api/proxy/route.ts and apps/sim/app/api/proxy/image/route.ts does not filter and judge the parameters in the request, resulting in an SSRF security issue. |
|---|
| La source | ⚠️ https://github.com/simstudioai/sim/issues/1128 |
|---|
| Utilisateur | 0x1f (UID 89432) |
|---|
| Soumission | 24/08/2025 13:02 (il y a 9 mois) |
|---|
| Modérer | 01/09/2025 16:52 (8 days later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 322129 [SimStudioAI sim route.ts élévation de privilèges] |
|---|
| Points | 17 |
|---|