SSRF in https://www.zomato.com████ allows reading local files and website source code
Critical
Z
Zomato
Submitted None
Team Summary
Official summary from Zomato
@nbsp found a SSRF vulnerability which leads to read local files from the web server (source code & system files). We have resolved the issue quickly and rewarded the researcher.
Actions:
Reported by
adibou
Report Details
Additional information and metadata
State
Closed
Substate
Resolved
Submitted
Weakness
Server-Side Request Forgery (SSRF)