{"uuid": "4ebc7eb4-2be8-49b3-986d-9208467ddb81", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-34351", "type": "seen", "source": "https://t.me/MrVGunz/1105", "content": "CVE-2024-34351:Next.js Server-Side Request Forgery in Server Actions\n\nA SSRF vulnerability was identified in Next.js Server Actions by security researchers at Assetnote. If the Host header is modified, and the below conditions are also met, an attacker may be able to make requests that appear to be originating from the Next.js application server itself.\n\n\ud83c\udfaf Poc\n\ud83d\udcda Refer\n\n\ud83d\udd39\ufe0f @hack_authenticator", "creation_timestamp": "2024-05-12T15:41:34.000000Z"}