Real security vulnerabilities always speak louder.
Today we’re going to talk about SSRF attack that allows hackers to send any network requests from the back-end server by using <img> tags.
I came across this vulnerability during penetration testing conducted for two separate projects. Screenshots are taken right out of testing reports. Any confidential data is hidden.
Read more: https://pentesting.dhound.io/blog/img-tag-vulnerability
