Server-Side Request Forgery (SSRF)

2021-11-2409:51:19

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.001 Low

EPSS

Percentile

48.0%

JSON

concrete5/concrete5 is vulnerable to server-side request forgery. The vulnerability exists through the local IP importing in ‘file.php’ which allows an attacker to read the files from private local LAN servers and exploit the local network apps.

CPENameOperatorVersion
concrete5/concrete5le8.5.6
concrete5/concrete5le9.0.0RC4
concrete5/corele8.5.6
concrete5/corele9.0.0RC4
concrete5/concrete5le8.5.6
concrete5/concrete5le9.0.0RC4
concrete5/corele8.5.6
concrete5/corele9.0.0RC4

Name	Operator	Version
concrete5/concrete5	le	8.5.6
concrete5/concrete5	le	9.0.0RC4
concrete5/core	le	8.5.6
concrete5/core	le	9.0.0RC4
concrete5/concrete5	le	8.5.6
concrete5/concrete5	le	9.0.0RC4
concrete5/core	le	8.5.6
concrete5/core	le	9.0.0RC4

References

documentation.concretecms.org/developers/introduction/version-history/857-release-notes

documentation.concretecms.org/developers/introduction/version-history/901-release-notes

github.com/advisories/GHSA-gqpw-9q54-9x28

github.com/concrete5/concrete5-core/commit/505c8d2ebcb04f53e45a29e67cfc354c13481967

github.com/concrete5/concrete5/commit/d34e7cb107b101296192bfe792e3c2f9ad2d94ea#diff-235cffb7c4c99fba627d9b5c63e7ad49258dae65d34c3c9dd6e087bb9a84cceeR419

github.com/concrete5/concrete5/pull/9975

hackerone.com/reports/1364797

0.001 Low

EPSS

Percentile

48.0%

JSON

Related for VERACODE:33084