[MEDIUM] Magento Open Source allows Server-Side Request Forgery (SSRF)

PKSA-7k2s-ckds-1z6q CVE-2023-26366 GHSA-8jxc-5f94-22vh

Affected package: magento/community-edition

Affected version: >=2.4.4-p1,<2.4.4-p6|>=2.4.5-p1,<2.4.5-p5|>=2.4.6-p1,<2.4.6-p3|=2.4.4|=2.4.5|=2.4.6|=2.4.7|=2.4.7-beta1

Reported by:
GitHub