| शीर्षक | jeecgboot JeecgBoot <= v3.9.1 SSRF |
|---|
| विवरण | A direct Server-Side Request Forgery (SSRF) vulnerability exists in the /sys/common/uploadImgByHttp endpoint of jeecgboot_JeecgBoot. The application extracts a user-controlled fileUrl from the JSON request body and immediately performs an outbound HTTP request using HttpURLConnection without prior validation. Because file type filtering (SsrfFileTypeFilter.checkUploadFileType) is executed only after the external resource has been fully downloaded, an authenticated attacker can force the server to fetch arbitrary external or internal resources. This flaw can be exploited for internal network scanning, local service enumeration, or theft of sensitive cloud metadata credentials. |
|---|
| स्रोत | ⚠️ https://github.com/jeecgboot/JeecgBoot/issues/9555 |
|---|
| उपयोगकर्ता | Ana10gy (UID 93358) |
|---|
| सबमिशन | 15/04/2026 05:17 PM (2 महीनों पहले) |
|---|
| संयम | 01/05/2026 01:58 PM (16 days later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 360562 [JeecgBoot तक 3.9.1 uploadImgByHttpEndpoint CommonController.java अधिकार वृद्धि] |
|---|
| अंक | 20 |
|---|