SSRF occurs when a web application fetches a remote resource without validating the user-supplied URL, allowing attackers to coerce the server into sending requests to internal resources, metadata endpoints, or loopback interfaces.
To resolve this vulnerability, follow these config changes or developer practices:
After applying the remediation, run an external attack-surface scan to verify that the vulnerability is no longer detected by WebScanify.
Run a free security scan now to identify missing headers, outdated JS, and other deployment vulnerabilities.