Gửi #858045: 1Panel-dev CordysCRM 1.4.1 Server-Side Request Forgerythông tin

tiêu đề1Panel-dev CordysCRM 1.4.1 Server-Side Request Forgery
Mô tảThe IntegrationConfigService component in CordysCRM v1.4.1 contains a Server-Side Request Forgery (SSRF) vulnerability. This vulnerability stems from the getSqlBotSrc() method extracting URLs from the appSecret parameter using regex pattern without proper validation. Extracted URLs are directly used to create HTTP connections via URI.create(jsUrl).toURL().openConnection() in the /organization/settings/third-party/edit endpoint. No whitelist validation, protocol restriction, or internal IP blocking is applied. Attackers can inject malicious URLs via the appSecret parameter (e.g., appSecret": "src="<http://malicious\\>"").
Nguồn⚠️ https://github.com/1Panel-dev/CordysCRM/issues/2687
Người dùng
 liushaozhe (UID 83234)
Đệ trình13/06/2026 19:39 (cách đây 1 tháng)
Kiểm duyệt18/07/2026 14:11 (1 month later)
Trạng tháiđược chấp nhận
Mục VulDB380045 [1Panel-dev CordysCRM đến 1.4.1 Third Party Edit Endpoint IntegrationConfigService.java getSqlBotSrc appSecret nâng cao đặc quyền]
điểm20

Do you want to use VulDB in your project?

Use the official API to access entries easily!