lambdaisland:uri is vulnerable to Server-side Request Forgery (SSRF). The vulnerability is due to the authority-regex
which allows an attacker to send malicious URLs to be parsed without properly handling the backslash (\\
) character in the host, allowing an attacker to parse an untrusted source.