Milad Fadavvi Fadavvi

## CVE-2022-38580
Name of an affected Product: Skipper [AKA Zalando Skipper] <= v0.13.236
Description: Zalando Skipper (<= v0.13.236) is vulnerable to Server-Side Request Forgery
Affected version(s): <= v0.13.236
Fixed Version: v0.13.237
CVE ID: CVE-2022-38580
Vulnerability Type: SSRF [Server-Side Request Forgery]
Root Cause: Custome Header [X-Skipper-Proxy]
References: https://github.com/zalando/skipper/releases/tag/v0.13.237
	Name of an affected Product: Skipper [AKA Zalando Skipper] <= v0.13.236
	Description: Zalando Skipper (<= v0.13.236) is vulnerable to Server-Side Request Forgery
	Affected version(s): <= v0.13.236
	Fixed Version: v0.13.237
	CVE ID: CVE-2022-38580
	Vulnerability Type: SSRF [Server-Side Request Forgery]
	Root Cause: Custome Header [X-Skipper-Proxy]
	References: https://github.com/zalando/skipper/releases/tag/v0.13.237