AdvancedVocabulary#security#backend#developer-tools

Server-Side Request Forgery Vocabulary

Build fluency in the vocabulary of preventing a user-supplied URL from tricking a server into an unintended request.

0 / 5 completed
1 / 5
At standup, a dev mentions an attacker supplying a URL to a feature like a link-preview tool, tricking the server itself into making a request to an internal resource the attacker could never reach directly. What is this vulnerability called?