提出 #858043: 1Panel-dev CordysCRM 1.4.1 Server-Side Request Forgery情報

タイトル1Panel-dev CordysCRM 1.4.1 Server-Side Request Forgery
説明The IntegrationConfigService component in CordysCRM v1.4.1 contains a Server-Side Request Forgery (SSRF) vulnerability. This vulnerability stems from the lack of input validation on the mkAddress parameter in the /organization/settings/third-party/edit endpoint when processing MAXKB configuration requests. The parameter is directly concatenated into a URL and used to make HTTP requests without whitelist validation, protocol restriction, or internal IP blocking. Attackers can craft malicious mkAddress values to force the server to make requests to arbitrary external addresses, potentially leading to internal network reconnaissance or data leakage.
ソース⚠️ https://github.com/1Panel-dev/CordysCRM/issues/2685
ユーザー
 liushaozhe (UID 83234)
送信2026年06月13日 19:36 (1 月 ago)
モデレーション2026年07月18日 14:11 (1 month later)
ステータス承諾済み
VulDBエントリ380044 [1Panel-dev CordysCRM 迄 1.4.1 Third Party Endpoint TokenService.java mkAddress 特権昇格]
ポイント20

Interested in the pricing of exploits?

See the underground prices here!