Webhook-url-http-3a-2f-2f169.254.169.254-2fmetadata-2fidentity-2foauth2-2ftoken //top\\ Today

The address http://169.254.169 is a specific internal endpoint for the . In a cloud environment, this endpoint is used by applications to programmatically request OAuth2 access tokens for managed identities. Security Risk: SSRF

: The attacker submits the IMDS URL as a webhook. The address http://169