| शीर्षक | 648540858 wvp-GB28181-pro <=2.7.4 Server-Side Request Forgery |
|---|
| विवरण | WVP Pro contains a stored Server-Side Request Forgery (SSRF) vulnerability in the cloud record download functionality. An attacker with administrative access to the Media Server configuration can inject a malicious IP address into the server's streamIp parameter. When any user subsequently triggers a cloud record download, the application constructs an HTTP URL using the stored malicious IP address and makes an HTTP request without validation. This allows the attacker to scan internal networks, access cloud metadata services (such as AWS IAM credentials), or probe internal services from the perspective of the application server.
|
|---|
| स्रोत | ⚠️ https://github.com/AnalogyC0de/public_exp/issues/15 |
|---|
| उपयोगकर्ता | Ana10gy (UID 93358) |
|---|
| सबमिशन | 27/02/2026 07:46 AM (5 महीनों पहले) |
|---|
| संयम | 11/03/2026 02:31 PM (12 days later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 350395 [648540858 wvp-GB28181-pro तक 2.7.4-20260107 IP Address ABLMediaNodeServerService.java getDownloadFilePath MediaServer.streamIp अधिकार वृद्धि] |
|---|
| अंक | 20 |
|---|