CVE-2023-50266 | morpheus65535 bazarr 1.2.4 GET Request bazarr/bazarr/app/ui.py requests.get server-side request forgery (GHSL-2023-192)

CVE-2023-50266 | morpheus65535 bazarr 1.2.4 GET Request bazarr/bazarr/app/ui.py requests.get server-side request forgery (GHSL-2023-192)

A vulnerability was found in morpheus65535 bazarr 1.2.4 and classified as critical. Affected by this issue is the function requests.get of the file bazarr/bazarr/app/ui.py of the component GET Request Handler. The manipulation leads to server-side request forgery. This vulnerability is handled as CVE-2023-50266. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.