CVE-2026-44232

Published: Mag 12, 2026 Last Modified: Mag 12, 2026

ExploitDB:

Other exploit source:

Google Dorks:

HIGH 8,7

Source: [email protected]

Attack Vector: network

Attack Complexity: low

Privileges Required: none

User Interaction: none

Confidentiality: N/A

Integrity: N/A

Availability: N/A

Description

AI Translation Available

DSSRF is a Node.js library that provides a wide range of utilities and advanced SSRF defense checks. Prior to 1.3.0, every IPv6 category bypasses is_url_safe. This vulnerability is fixed in 1.3.0.

791

Incomplete Filtering of Special Elements

Incomplete

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Integrity

Potential Impacts:

Unexpected State

Applicable Platforms

All platforms may be affected

View CWE Details

https://github.com/HackingRepo/dssrf-js/security/advisories…

https://github.com/HackingRepo/dssrf-js/security/advisories/GHSA-8p33-q827-ghj5

CVE-2026-44232

Description

Incomplete Filtering of Special Elements

Common Consequences

Applicable Platforms

Iscriviti alla newsletter