o2oa 10.0 Server-Side Request Forgery정보

제목	o2oa https://github.com/o2oa/o2oa 10.0 Server-Side Request Forgery
설명	O2OA 10.0 contains an authenticated server-side request forgery issue in /x_file_assemble_control/jaxrs/file/upload/with/url. The feature is intended to import a remote file by URL, but it accepts a user-controlled fileUrl, only rejects anonymous access, and uses an effectively unrestricted default HTTP allowlist. As a result, an authenticated user can cause the server to fetch loopback or internal HTTP/HTTPS resources, store the fetched bytes as a File object, and then retrieve the response body through /x_file_assemble_control/jaxrs/file/{id}/download, leading to information disclosure from otherwise non-publicly reachable services.
원천	⚠️ https://github.com/o2oa/o2oa/issues/195
사용자	larlarua (UID 97278)
제출	2026. 04. 12. AM 11:23 (2 개월 ago)
모더레이션	2026. 04. 28. PM 12:21 (16 days later)
상태	수락
VulDB 항목	359951 [o2oa 까지 10.0 URL Fetching FileAction.java FileAction fileUrl 권한 상승]
포인트들	20

Do you want to use VulDB in your project?

Use the official API to access entries easily!