InstantCMS vulnerable to Server-Side Request Forgery via package installer
Description
InstantCMS is a free and open source content management system. A blind Server-Side Request Forgery (SSRF) vulnerability in InstantCMS up to and including 2.17.3 allows authenticated remote attackers to make nay HTTP/HTTPS request via the package parameter. It is possible to make any HTTP/HTTPS request to any website in installer functionality. Due to such vulnerability it is possible to for example scan local network, call local services and its functions, conduct a DoS attack, and/or disclose a server's real IP if it's behind a reverse proxy. It is also possible to exhaust server resources by sending plethora of such requests. As of time of publication, no patched releases are available.
Affected products
2- Range: <=2.17.3
- instantsoft/icms2v5Range: <= 2.17.3
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- github.com/instantsoft/icms2/commit/fa997bdab3429fad0c850966bfacbcb96d5ab041mitrex_refsource_MISC
- github.com/instantsoft/icms2/security/advisories/GHSA-79hh-mhvg-whrwmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.