A SSRF vulnerability exists in the ProxyServlet component of ZCS Admin interface. Details to follow.
Verified on 8.8.12 It is working as expected