# CVE-2023-27163

>  Request-Baskets v1.2.1 - Server-side request forgery (SSRF)

request-baskets up to v1.2.1 was discovered to contain a Server-Side Request Forgery (SSRF) via the component /api/baskets/{name}. This vulnerability allows attackers to access network resources and sensitive information via a crafted API request.

## Installation

git clone

cd CVE-2023-27163

pip3 install -r requirements.txt

## Usage

    python3 url attack_server

Exploit Request Baskets Script

positional arguments:
> url            main path (/) of the server (eg.
> attack_server  ATTACK_SERVER

    -h, --help     show this help message and exit