Critical
CVSS 9.1
Overview
Server side request forgery (SSRF) vulnerability in makeplane plane 0.23.1 via the password recovery.
CVE-2025-50251
Server side request forgery (SSRF) vulnerability in makeplane plane 0.23.1 via t...
Risk analysis
This vulnerability is rated 🔴 CRITICAL.
- CVSS: 9.1 (CRITICAL)
- Detected tags: ssrf (tag impact: MODERATE)
Recommended actions:
- Deny access to internal/metadata addresses; use outbound allowlists.