Gibbon v3.4.4 and below allows malicious users to execute a Server-Side Request Forgery (SSRF) via a crafted URL.
gibbon project gibbon