Описание
A Blind Server-Side Request Forgery (SSRF) vulnerability in evershop 2.1.0 and prior allows unauthenticated attackers to force the server to initiate an HTTP request via the "GET /images" API. The vulnerability occurs due to insufficient validation of the "src" query parameter, which permits arbitrary HTTP or HTTPS URIs, resulting in unexpected requests against internal and external networks.
Ссылки
- Third Party Advisory
- Product
Уязвимые конфигурации
Конфигурация 1Версия до 2.1.0 (включая)
cpe:2.3:a:evershop:evershop:*:*:*:*:*:node.js:*:*
EPSS
Процентиль: 10%
0.00035
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-918
Связанные уязвимости
github
около 1 месяца назад
evershop allows unauthenticated attackers to force server to initiate HTTP request via "GET /images" API
EPSS
Процентиль: 10%
0.00035
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-918