QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2025-68696

Back to search

CVE-2025-68696

Published: Dec 23, 2025

Modified: Dec 24, 2025

PUBLISHED

Description

httparty is an API tool. In versions 0.23.2 and prior, httparty is vulnerable to SSRF. This issue can pose a risk of leaking API keys, and it can also allow third parties to issue requests to internal servers. This issue has been patched via commit 0529bcd.

VendorProductVersions

jnunemaker

httparty

affected
<= 0.23.2

Weaknesses (CWE)

CWE-918

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now