CVE-2020–15823: Server-Side Request Forgery (SSRF) in JetBrains YouTrack

Server Side Request Forgery

More than a year ago I discovered a misconfiguration that leads to SSRF in YouTrack, and here are detailed steps on how I did it.

https://mitmlab.com/cve-2020-15823-server-side-request-forgery-ssrf-in-jetbrains-youtrack-74543a86a248