Server-Side Request Forgery (SSRF)
Zalando Skipper v0.13.236 is vulnerable to Server-Side Request Forgery (SSRF).
Advisories for Golang/Github.com/Zalando/Skipper package
2022
Query predicate bypass in Zalando Skipper
In Zalando Skipper before 0.13.218, a query predicate could be bypassed via a prepared request.