Security Apache Flex BlazeDS 4.7.1 SSRF November 22, 2015 007admin Leave a comment Apache Flex BlazeDS versions 4.7.0 and 4.7.1 suffer from a server-side request forgery vulnerability.