| 제목 | JeeSite v5.11 Server-Side Request Forgery |
|---|
| 설명 | A Server-Side Request Forgery (SSRF) and Arbitrary File Read vulnerability exists in JeeSite version 5.11.1 (Spring Boot 3) due to improper input validation of the name parameter in the /cms/fileTemplate/form endpoint. This parameter is propagated through multiple layers and ultimately passed into the Spring ResourceLoader.getResource() method, which accepts multiple URI schemes such as file:, http:, classpath:, etc. An attacker can exploit this chain to read local files or make arbitrary requests from the server. |
|---|
| 원천 | ⚠️ https://github.com/xiaoyangsec/JeeSite_SSRF/blob/main/jeesite5-ssrf-file-read.md |
|---|
| 사용자 | xiaoyang (UID 84496) |
|---|
| 제출 | 2025. 05. 20. PM 06:50 (1 년도 ago) |
|---|
| 모더레이션 | 2025. 05. 25. PM 07:33 (5 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 310274 [thinkgem JeeSite 까지 5.11.1 URI Scheme /cms/fileTemplate/form ResourceLoader.getResource 이름 권한 상승] |
|---|
| 포인트들 | 20 |
|---|