← All findings
f-003 — SSRF in /api/v1/fetch
high · public-api · status open · first seen 2026-04-24
Framework mapping
| Framework | Controls / requirements |
|---|---|
| ISO/IEC 27001:2022 ISMS |
A.8.23 Network segmentation |
| NIST Cybersecurity Framework 2.0 Risk |
PR.AC-5 |
| OWASP API Security Top 10 (2023) API |
API7:2023 |
| OWASP Top 10 (2021) Web |
A10:2021 |
| MITRE ATT&CK Adversary TTPs |
T1590 |