Incorrect Authorization
Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository transloadit/uppy prior to 3.3.1.
Advisories for Npm/Uppy package
2022
Server-Side Request Forgery (SSRF)
uppy is vulnerable to Server-Side Request Forgery (SSRF)
2020
Server-Side Request Forgery (SSRF)
The uppy npm package is vulnerable to a Server-Side Request Forgery (SSRF) vulnerability, which allows an attacker to scan local or external networks or otherwise interact with internal systems.
Server-Side Request Forgery (SSRF)
The uppy npm package is vulnerable to a Server-Side Request Forgery (SSRF) vulnerability, which allows an attacker to scan local or external networks or otherwise interact with internal systems.