The host is installed with Apache HTTP Server through 2.4.48 and is prone to a server-side request forgery (SSRF) vulnerability. A flaw is present in the application, which fails to properly handle a crafted request uri-path. Successful exploitation could allows attackers to cause mod_proxy to forward the request to an origin server choosen by the remote user.