The ECT Provider component in OutSystems Platform Server 10 before 10.0.1104.0 and 11 before 11.9.0 (and LifeTime management console before 11.7.0) allows SSRF for arbitrary outbound HTTP requests.Referenceshttps://success.outsystems.com/Support/Security/Vulnerabilities/Vulnerability_RTAF-2226https://labs.integrity.pt/advisories/cve-2021-29357/
