CVE-2025-64178 | jon4hz jellysweep up to 0.12.x API Endpoint /api/images/cache server-side request forgery (GHSA-xc93-q32j-cpcg)

A vulnerability, which was classified as critical, has been found in jon4hz jellysweep up to 0.12.x. Impacted is an unknown function of the file /api/images/cache of the component API Endpoint. Performing manipulation results in server-side request forgery.

This vulnerability is cataloged as CVE-2025-64178. It is possible to initiate the attack remotely. There is no exploit available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More