| Title | Sparksuite SimpleMDE 1.11.2 Server-Side Request Forgery SSRF |
|---|
| Description | An unauthenticated attacker can make internal requests on the target server, with the aim of carrying out attacks on the victim's infrastructure, potentially opening new paths and exploitation combinations for other vulnerabilities.
The vulnerability in the markdown converter service occurs due to the lack of treatment and validation of user input, allowing an attacker to use the following payload to view an internal service:
<iframe src="http://127.0.0.1:PORT"></iframe>
Poc Video: https://youtu.be/t-mDofraMcc
References:
https://owasp.org/www-community/attacks/Server_Side_Request_Forgery
https://portswigger.net/web-security/ssrf
|
|---|
| Source | ⚠️ https://github.com/sparksuite/simplemde-markdown-editor |
|---|
| User | Anonymous User |
|---|
| Submission | 01/14/2024 01:12 (2 years ago) |
|---|
| Moderation | 01/17/2024 14:37 (4 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 251373 [Sparksuite SimpleMDE up to 1.11.2 iFrame cross site scripting] |
|---|
| Points | 20 |
|---|