Webhook-url-http-3a-2f-2f169.254.169.254-2fmetadata-2fidentity-2foauth2-2ftoken ((full)) -

SSRF to AWS Metadata Exposure: How Attackers Steal Cloud ...

If you see this URL being submitted into a "Webhook URL" field on a website, it is likely an . SSRF to AWS Metadata Exposure: How Attackers Steal Cloud

If an attacker provides http://169.254.169.254/metadata/identity/oauth2/token as their "webhook destination," your server may dutifully reach out to that internal address. Because the request comes from within your cloud network, the metadata service trusts it and may return a . The Potential Impact: SSRF to AWS Metadata Exposure: How Attackers Steal Cloud