server-side request forgery
PulseAugur coverage of server-side request forgery — every cluster mentioning server-side request forgery across labs, papers, and developer communities, ranked by signal.
3 day(s) with sentiment data
-
LLM security tool LLM Guard found with critical SSRF vulnerability
A Server-Side Request Forgery (SSRF) vulnerability has been discovered in LLM Guard, an open-source tool designed to secure LLM applications. The vulnerability, found by Correctover CCS, allows attackers to exploit the …
-
New tool audits MCP server security, finds widespread vulnerabilities
A new open-source tool called mcp-audit has been released to help users identify security vulnerabilities and inefficiencies in their MCP (Model-Centric Programming) server configurations. The tool, developed by alih552…
-
AI Agents Vulnerable to SSRF Attacks via IP Address Evasion
A security vulnerability exists in AI agents that rely on simple string matching to block access to internal cloud metadata endpoints like http://169.254.169.254/. Attackers can bypass these guards by using alternative …
-
SSRF Protection Checklist for URL Fetching Tools
This document outlines a checklist for protecting against Server-Side Request Forgery (SSRF) vulnerabilities in URL fetching tools, particularly within Machine Configuration Protocol (MCP) environments. It emphasizes th…