Prometheus Blackbox Exporter up to and including 0.17.0 allows /probe?target= SSRF. NOTE: follow-on discussion suggests that this might plausibly be interpreted as both intended functionality and also a vulnerability
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
prometheus blackbox exporter |