CVE-2025-52477 | octo-sts app up to 0.5.2 server-side request forgery (GHSA-h3qp-hwvr-9xcq)

A vulnerability, which was classified as critical, has been found in octo-sts app up to 0.5.2. Affected by this issue is some unknown functionality. The manipulation leads to server-side request forgery.

This vulnerability is handled as CVE-2025-52477. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More