| Title | ShopXO 6.7.1 Server-Side Request Forgery |
|---|
| Description | A vulnerability has been found in Gong Fuxiang ShopXO V6.7.1. Affected is the function saveRemote of the file
extend/base/Uploader.php of the component UEditor Remote Crawler. The manipulation of the argument source leads to
server-side request forgery. The attack can be initiated remotely. No authentication is required for exploitation. The
vendor's IP filter relies only on FILTER_FLAG_NO_PRIV_RANGE and therefore does not reject loopback, link-local or
other reserved ranges; the downstream cURL transport additionally follows HTTP redirects without re-validating the
destination, providing a secondary bypass primitive. The exploit has been disclosed to the public and may be used. |
|---|
| Source | ⚠️ https://github.com/yunyan05/MYCVE/tree/main/ShopXO/V6.7.1-Unauthenticated-SSRF |
|---|
| User | yunyan05 (UID 90348) |
|---|
| Submission | 05/15/2026 04:12 (1 month ago) |
|---|
| Moderation | 06/14/2026 13:53 (1 month later) |
|---|
| Status | Duplicate |
|---|
| VulDB entry | 270367 [ShopXO up to 6.1.0 extend/base/Uploader.php Source server-side request forgery] |
|---|
| Points | 0 |
|---|