What the vulnerability does
01Description
Server-Side Request Forgery (SSRF) in GitHub repository owncast/owncast prior to 0.1.0.
CVE-2023-3188
HIGH
CVE-2023-3188: Server-Side Request Forgery (SSRF) in owncast/owncast
CVSS base score
8.3/10
CVSS vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
Key dates
02Disclosure timeline
June 10, 2023
CVE published
January 6, 2025
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2026-27479 Wallos: SSRF via Redirect Bypass in Logo/Icon URL Fetch
CVE-2026-4215 FlowCI flow-core-x SMTP Host ConfigServiceImpl.java save server-side request forgery
CVE-2021-36203 Johnson Controls Metasys SCT Pro
CVE-2025-10787 MuYuCMS Add Fiend Link index.html server-side request forgery
CVE-2026-33401 Wallos: Incomplete fix for CVE-2026-30840 - SSRF in AI and notification endpoints bypass ssrf_helper.php
