| 제목 | Page Replica 1.0 Server-Side Request Forgery |
|---|
| 설명 | A Server-Side Request Forgery vulnerability (CWE-918) exists in the sitemap scraping functionality. The /sitemap endpoint accepts a user-controlled url parameter and directly passes it to sitemap.fetch() without any validation, sanitization, or allowlist restrictions. This behavior allows an attacker to supply arbitrary URLs, causing the server to initiate outbound requests to attacker-specified destinations.
Because the request originates from the server environment, an attacker may abuse this functionality to access internal network services, cloud metadata endpoints, or other resources that are otherwise inaccessible from the internet. |
|---|
| 원천 | ⚠️ https://github.com/lakshayyverma/CVE-Discovery/blob/main/page_replica.md |
|---|
| 사용자 | lakshay12311 (UID 91298) |
|---|
| 제출 | 2026. 03. 11. AM 07:34 (22 날 ago) |
|---|
| 모더레이션 | 2026. 03. 26. PM 05:02 (15 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 353658 [Page-Replica Page Replica 까지 e4a7f52e75093ee318b4d5a9a9db6751050d2ad0 Endpoint /sitemap sitemap.fetch url 권한 상승] |
|---|
| 포인트들 | 20 |
|---|