| 제목 | Kodbox 1.64 SSRF |
|---|
| 설명 | KodBox 1.64 (https://github.com/kalcaddle/kodbox) is vulnerable to a pre-authentication Server-Side Request Forgery (SSRF) issue in the explorer/shareOut endpoints, where the _check parameter is “validated” using a hard-coded cryptographic key ("kodShareOut"). Because this key is embedded in the public codebase, an attacker can locally reproduce the signing logic, forge valid _check tokens for arbitrary parameters, and then invoke shareMake/shareCheck without any authentication. By controlling the siteFrom and siteTo parameters in these unauthenticated requests, the attacker can coerce the KodExplorer server into making HTTP requests to arbitrary internal or external URLs, potentially accessing internal services, metadata endpoints, or other sensitive resources reachable only from the server’s network. |
|---|
| 원천 | ⚠️ https://vulnplus-note.wetolink.com/share/3VtzyzYgcS4b |
|---|
| 사용자 | vulnplusbot (UID 96250) |
|---|
| 제출 | 2026. 03. 22. PM 01:41 (24 날 ago) |
|---|
| 모더레이션 | 2026. 04. 05. PM 05:44 (14 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 355408 [kalcaddle kodbox 까지 1.64 shareMake/shareCheck siteFrom/siteTo 권한 상승] |
|---|
| 포인트들 | 18 |
|---|