Submeter #777661: FlowiseAI Flowise <= 3.0.12 Server-Side Request Forgery (CWE-918)informação

Título	FlowiseAI Flowise <= 3.0.12 Server-Side Request Forgery (CWE-918)
Descrição	# Technical Details A Server-Side Request Forgery (SSRF) vulnerability exists in the API Document Loader component `packages/components/nodes/documentloaders/API/APILoader.ts` of FlowiseAI Flowise. The API Document Loader uses raw axios.get() and axios.post() instead of the secureAxiosRequest wrapper introduced in the DNS Rebinding fix (GHSA-2x8m-83vc-6wv4, commit 643ebf5). This means HTTP_DENY_LIST is completely bypassed for this component. The URL comes directly from user input and flows into axios.get(url) without any IP validation, deny-list check, or DNS rebinding protection. The full response body is returned in pageContent, making this a blind SSRF with full response exfiltration. # Vulnerable Code File: packages/components/nodes/documentloaders/API/APILoader.ts (lines 268, 293) Method: executeGetRequest() and executePostRequest() Why: Uses raw axios.get(url) and axios.post(url) instead of secureAxiosRequest(). Other components (ApiChain, WebScraperTool, HTTP node) were correctly patched to use secureAxiosRequest/secureFetch but APILoader was missed. # Reproduction 1. Deploy Flowise with deny list: docker run -d -e HTTP_DENY_LIST="x.x.x.x/32,10.0.0.0/8,172.16.0.0/12,192.168.0.0/16,127.0.0.0/8" -p 3001:3000 flowiseai/flowise:latest 2. Authenticate and get JWT. 3. Trigger SSRF: POST /api/v1/document-store/loader/preview with loaderConfig.url pointing to internal IP (e.g., http://172.17.0.1:9999). 4. Full response body returned in pageContent field despite target IP being in deny list. # Impact - Steal cloud metadata (AWS IAM credentials, GCP tokens). - Scan internal networks, probe internal services. - Bypass network segmentation - server acts as proxy from trusted network. - False sense of security - admins configure HTTP_DENY_LIST but this component silently bypasses it.
Fonte	⚠️ https://gist.github.com/YLChen-007/dda3599bf9e016caabf1b830fac53942
Utilizador	Eric-a (UID 96353)
Submissão	11/03/2026 15h06 (há 3 meses)
Moderação	06/05/2026 09h41 (2 months later)
Estado	Aceite
Entrada VulDB	361277 [FlowiseAI Flowise até 3.0.12 API Document Loader APILoader.ts axios.get pageContent Elevação de Privilégios]
Pontos	20

◂ Voltar Visão Geral Próximo ▸

Interested in the pricing of exploits?

See the underground prices here!