Keycloak version 12.0.1 suffers from a blind server-side request forgery vulnerability. Continue reading...