| 제목 | 1Panel-dev CordysCRM 1.4.1 Server-Side Request Forgery |
|---|
| 설명 | The IntegrationConfigService component in CordysCRM v1.4.1 contains a Server-Side Request Forgery (SSRF) vulnerability. This vulnerability stems from the lack of input validation on the mkAddress parameter in the /organization/settings/third-party/test endpoint when processing SQLBOT configuration test requests. The parameter is directly concatenated into a URL and used to make HTTP requests without whitelist validation, protocol restriction, or internal IP blocking. This endpoint requires lower privileges (SYSTEM_SETTING_READ), expanding the attack surface. Attackers can craft malicious mkAddress values to force the server to make requests to arbitrary external addresses. |
|---|
| 원천 | ⚠️ https://github.com/1Panel-dev/CordysCRM/issues/2686 |
|---|
| 사용자 | liushaozhe (UID 83234) |
|---|
| 제출 | 2026. 06. 13. PM 07:38 (1 월 ago) |
|---|
| 모더레이션 | 2026. 07. 18. PM 02:11 (1 month later) |
|---|
| 상태 | 중복 |
|---|
| VulDB 항목 | 380044 [1Panel-dev CordysCRM 까지 1.4.1 Third Party Endpoint TokenService.java mkAddress 권한 상승] |
|---|
| 포인트들 | 0 |
|---|