There is a SSRF that allow an attacker to see private services of the network, and can leak confidential data.

That is a problem in the affected applications. If they are vulnerable through Rendertron, they will be vulnerable without Rendertron, too.