Submit #644582: crmeb CRMEB-KY v5.6.1 SSRFinfo

Titelcrmeb CRMEB-KY v5.6.1 SSRF
BeschreibungThe Admin-triggered SSRF exists because the testOutUrl method in OutAccountServices.php directly passes a user-controlled URL ($data['push_token_url']) to HttpService::getRequest(). The HttpService::getRequest() and its internal request() methods use cURL to make an HTTP request to this URL without any validation or filtering of the URL's host or scheme (other than the default cURL protocol support). This allows an authenticated administrator to force the server to make arbitrary HTTP/HTTPS requests to internal or external network resources.
Quelle⚠️ https://github.com/August829/Yu/blob/main/58ead8e7e08bfb015.md
Benutzer
 Yu Bao (UID 88956)
Einreichung30.08.2025 09:31 (vor 8 Monaten)
Moderieren13.09.2025 11:46 (14 days later)
StatusAkzeptiert
VulDB Eintrag323826 [CRMEB bis 5.6.1 OutAccountServices.php testOutUrl push_token_url erweiterte Rechte]
Punkte20

ZurückÜbersichtWeiter

Do you need the next level of professionalism?

Upgrade your account now!