CVE Daily

CVE-2025-28987

Server-Side Request Forgery (SSRF) vulnerability in PressForward PressForward al...

Medium CVSS 6.4

Overview

Server-Side Request Forgery (SSRF) vulnerability in PressForward PressForward allows Server Side Request Forgery. This issue affects PressForward: from n/a through 5.9.1.

CWE: CWE-918 Published: 2025-08-14T11:15:31.790
Risk analysis

This vulnerability is rated 🟡 MEDIUM.

  • CVSS: 6.4 (MEDIUM)
  • Detected tags: ssrf (tag impact: MODERATE)

Recommended actions:

  • Deny access to internal/metadata addresses; use outbound allowlists.

Recommended tools

Tags