| Titel | Eyoucms 1.7.7 SSRF Vulnerability |
|---|
| Beschreibung | A Server-Side Request Forgery (SSRF) vulnerability was found in EyouCMS version 1.7.7 and earlier. The vulnerability exists in the image fetching functionality where user-supplied URLs are not properly validated before making server-side HTTP requests. This allows an authenticated attacker to send crafted requests that can reach internal network services or cloud metadata endpoints. The vulnerability requires user authentication to exploit. |
|---|
| Quelle | ⚠️ https://note-hxlab.wetolink.com/share/DeUFyoSjsPPK |
|---|
| Benutzer | pemic (UID 93604) |
|---|
| Einreichung | 18.12.2025 08:14 (vor 6 Monaten) |
|---|
| Moderieren | 30.12.2025 19:46 (12 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 339081 [EyouCMS bis 1.7.7 application/function.php saveRemote erweiterte Rechte] |
|---|
| Punkte | 20 |
|---|