ClipperCMS 1.3.3 exists to contain a Server-Side Request Forgery (SSRF) via the pkg_url parameter at /manager/index.php.
clippercms clippercms 1.3.3