CWE-918
Server-Side Request Forgery (SSRF)
The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.
CVE-2025-8341 (GCVE-0-2025-8341)
Vulnerability from cvelistv5 – Published: 2025-08-04 08:34 – Updated: 2025-08-04 16:13
VLAI
Title
SSRF in Infinity Datasource Plugin
Summary
Grafana is an open-source platform for monitoring and observability. The Infinity datasource plugin, maintained by Grafana Labs, allows visualizing data from JSON, CSV, XML, GraphQL, and HTML endpoints.
If the plugin was configured to allow only certain URLs, an attacker could bypass this restriction using a specially crafted URL. This vulnerability is fixed in version 3.4.1.
Severity
5 (Medium)
CWE
- CWE-918 - Server-Side Request Forgery (SSRF)
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://grafana.com/security/security-advisories/… | vendor-advisory |
| https://github.com/grafana/grafana-infinity-datas… | patch |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Grafana | grafana-infinity-datasource |
Affected:
0.6.0 , < 3.4.1
(semver)
|
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-8341",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-08-04T16:06:51.991213Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-08-04T16:13:49.206Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "grafana-infinity-datasource",
"vendor": "Grafana",
"versions": [
{
"lessThan": "3.4.1",
"status": "affected",
"version": "0.6.0",
"versionType": "semver"
}
]
}
],
"configurations": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "Plugin must be installed and host(s) need to configured to be disallowed.\u0026nbsp;\u003cbr\u003e"
}
],
"value": "Plugin must be installed and host(s) need to configured to be disallowed."
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "Elad Pticha"
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cp\u003e\u003cstrong\u003eGrafana\u003c/strong\u003e is an open-source platform for monitoring and observability. The \u003cstrong\u003eInfinity datasource plugin\u003c/strong\u003e, maintained by Grafana Labs, allows visualizing data from JSON, CSV, XML, GraphQL, and HTML endpoints.\u003c/p\u003e\n\u003cp\u003eIf the plugin was configured to allow only certain URLs, an attacker could bypass this restriction using a specially crafted URL. This vulnerability is fixed in \u003cstrong\u003eversion 3.4.1.\u003c/strong\u003e\u003c/p\u003e"
}
],
"value": "Grafana is an open-source platform for monitoring and observability. The Infinity datasource plugin, maintained by Grafana Labs, allows visualizing data from JSON, CSV, XML, GraphQL, and HTML endpoints.\n\n\nIf the plugin was configured to allow only certain URLs, an attacker could bypass this restriction using a specially crafted URL. This vulnerability is fixed in version 3.4.1."
}
],
"impacts": [
{
"capecId": "CAPEC-664",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-664 Server Side Request Forgery"
}
]
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-918",
"description": "CWE-918 Server-Side Request Forgery (SSRF)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-08-04T08:34:50.669Z",
"orgId": "57da9224-a3e2-4646-9d0e-c4dc2e05e7da",
"shortName": "GRAFANA"
},
"references": [
{
"tags": [
"vendor-advisory"
],
"url": "https://grafana.com/security/security-advisories/cve-2025-8341/"
},
{
"tags": [
"patch"
],
"url": "https://github.com/grafana/grafana-infinity-datasource/releases/tag/v3.4.1"
}
],
"source": {
"discovery": "EXTERNAL"
},
"title": "SSRF in Infinity Datasource Plugin",
"x_generator": {
"engine": "Vulnogram 0.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "57da9224-a3e2-4646-9d0e-c4dc2e05e7da",
"assignerShortName": "GRAFANA",
"cveId": "CVE-2025-8341",
"datePublished": "2025-08-04T08:34:50.669Z",
"dateReserved": "2025-07-30T08:39:45.330Z",
"dateUpdated": "2025-08-04T16:13:49.206Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2025-8520 (GCVE-0-2025-8520)
Vulnerability from cvelistv5 – Published: 2025-08-04 18:02 – Updated: 2025-08-05 15:54
VLAI
Title
givanz Vvveb Drag-and-Drop Editor editor server-side request forgery
Summary
A vulnerability classified as critical was found in givanz Vvveb up to 1.0.5. This vulnerability affects unknown code of the file /vadmin123/?module=editor/editor of the component Drag-and-Drop Editor. The manipulation of the argument url leads to server-side request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 1.0.6 is able to address this issue. The patch is identified as f684f3e374d04db715730fc4796e102f5ebcacb2. It is recommended to upgrade the affected component.
Severity
CWE
- CWE-918 - Server-Side Request Forgery
Assigner
References
6 references
| URL | Tags |
|---|---|
| https://vuldb.com/?id.318646 | vdb-entrytechnical-description |
| https://vuldb.com/?ctiid.318646 | signaturepermissions-required |
| https://vuldb.com/?submit.624973 | third-party-advisory |
| https://hkohi.ca/vulnerability/9 | exploit |
| https://github.com/givanz/Vvveb/commit/f684f3e374… | patch |
| https://github.com/givanz/Vvveb/releases/tag/1.0.6 | patch |
Impacted products
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-8520",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-08-05T15:54:16.396644Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-08-05T15:54:19.112Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"references": [
{
"tags": [
"exploit"
],
"url": "https://vuldb.com/?submit.624973"
},
{
"tags": [
"exploit"
],
"url": "https://hkohi.ca/vulnerability/9"
}
],
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"modules": [
"Drag-and-Drop Editor"
],
"product": "Vvveb",
"vendor": "givanz",
"versions": [
{
"status": "affected",
"version": "1.0.0"
},
{
"status": "affected",
"version": "1.0.1"
},
{
"status": "affected",
"version": "1.0.2"
},
{
"status": "affected",
"version": "1.0.3"
},
{
"status": "affected",
"version": "1.0.4"
},
{
"status": "affected",
"version": "1.0.5"
},
{
"status": "unaffected",
"version": "1.0.6"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "reporter",
"value": "0xHamy (VulDB User)"
}
],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability classified as critical was found in givanz Vvveb up to 1.0.5. This vulnerability affects unknown code of the file /vadmin123/?module=editor/editor of the component Drag-and-Drop Editor. The manipulation of the argument url leads to server-side request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 1.0.6 is able to address this issue. The patch is identified as f684f3e374d04db715730fc4796e102f5ebcacb2. It is recommended to upgrade the affected component."
},
{
"lang": "de",
"value": "In givanz Vvveb bis 1.0.5 wurde eine Schwachstelle entdeckt. Sie wurde als kritisch eingestuft. Das betrifft eine unbekannte Funktionalit\u00e4t der Datei /vadmin123/?module=editor/editor der Komponente Drag-and-Drop Editor. Durch das Beeinflussen des Arguments url mit unbekannten Daten kann eine server-side request forgery-Schwachstelle ausgenutzt werden. Der Angriff kann \u00fcber das Netzwerk angegangen werden. Der Exploit steht zur \u00f6ffentlichen Verf\u00fcgung. Ein Aktualisieren auf die Version 1.0.6 vermag dieses Problem zu l\u00f6sen. Der Patch wird als f684f3e374d04db715730fc4796e102f5ebcacb2 bezeichnet. Als bestm\u00f6gliche Massnahme wird das Einspielen eines Upgrades empfohlen."
}
],
"metrics": [
{
"cvssV4_0": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
"version": "4.0"
}
},
{
"cvssV3_1": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C",
"version": "3.1"
}
},
{
"cvssV3_0": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C",
"version": "3.0"
}
},
{
"cvssV2_0": {
"baseScore": 5.8,
"vectorString": "AV:N/AC:L/Au:M/C:P/I:P/A:P/E:POC/RL:OF/RC:C",
"version": "2.0"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-918",
"description": "Server-Side Request Forgery",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-08-04T18:02:06.491Z",
"orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
"shortName": "VulDB"
},
"references": [
{
"name": "VDB-318646 | givanz Vvveb Drag-and-Drop Editor editor server-side request forgery",
"tags": [
"vdb-entry",
"technical-description"
],
"url": "https://vuldb.com/?id.318646"
},
{
"name": "VDB-318646 | CTI Indicators (IOB, IOC, IOA)",
"tags": [
"signature",
"permissions-required"
],
"url": "https://vuldb.com/?ctiid.318646"
},
{
"name": "Submit #624973 | Vvveb 1.0.5 Server-Side Request Forgery",
"tags": [
"third-party-advisory"
],
"url": "https://vuldb.com/?submit.624973"
},
{
"tags": [
"exploit"
],
"url": "https://hkohi.ca/vulnerability/9"
},
{
"tags": [
"patch"
],
"url": "https://github.com/givanz/Vvveb/commit/f684f3e374d04db715730fc4796e102f5ebcacb2"
},
{
"tags": [
"patch"
],
"url": "https://github.com/givanz/Vvveb/releases/tag/1.0.6"
}
],
"timeline": [
{
"lang": "en",
"time": "2025-08-04T00:00:00.000Z",
"value": "Advisory disclosed"
},
{
"lang": "en",
"time": "2025-08-04T02:00:00.000Z",
"value": "VulDB entry created"
},
{
"lang": "en",
"time": "2025-08-04T08:32:19.000Z",
"value": "VulDB entry last update"
}
],
"title": "givanz Vvveb Drag-and-Drop Editor editor server-side request forgery"
}
},
"cveMetadata": {
"assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
"assignerShortName": "VulDB",
"cveId": "CVE-2025-8520",
"datePublished": "2025-08-04T18:02:06.491Z",
"dateReserved": "2025-08-04T06:26:33.939Z",
"dateUpdated": "2025-08-05T15:54:19.112Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2025-8527 (GCVE-0-2025-8527)
Vulnerability from cvelistv5 – Published: 2025-08-04 21:32 – Updated: 2025-08-05 13:38
VLAI
Title
Exrick xboot Swagger SecurityController.java server-side request forgery
Summary
A vulnerability was found in Exrick xboot up to 3.3.4. It has been rated as critical. This issue affects some unknown processing of the file xboot-fast/src/main/java/cn/exrick/xboot/modules/base/controller/common/SecurityController.java of the component Swagger. The manipulation of the argument loginUrl leads to server-side request forgery. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Severity
CWE
- CWE-918 - Server-Side Request Forgery
Assigner
References
5 references
| URL | Tags |
|---|---|
| https://vuldb.com/?id.318653 | vdb-entrytechnical-description |
| https://vuldb.com/?ctiid.318653 | signaturepermissions-required |
| https://vuldb.com/?submit.622174 | third-party-advisory |
| https://github.com/Exrick/xboot/issues/70 | issue-tracking |
| https://github.com/Exrick/xboot/issues/70#issue-3… | exploitissue-tracking |
Impacted products
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-8527",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-08-05T13:37:59.148036Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-08-05T13:38:09.297Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"modules": [
"Swagger"
],
"product": "xboot",
"vendor": "Exrick",
"versions": [
{
"status": "affected",
"version": "3.3.0"
},
{
"status": "affected",
"version": "3.3.1"
},
{
"status": "affected",
"version": "3.3.2"
},
{
"status": "affected",
"version": "3.3.3"
},
{
"status": "affected",
"version": "3.3.4"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "reporter",
"value": "ZAST.AI (VulDB User)"
}
],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability was found in Exrick xboot up to 3.3.4. It has been rated as critical. This issue affects some unknown processing of the file xboot-fast/src/main/java/cn/exrick/xboot/modules/base/controller/common/SecurityController.java of the component Swagger. The manipulation of the argument loginUrl leads to server-side request forgery. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used."
},
{
"lang": "de",
"value": "Eine Schwachstelle wurde in Exrick xboot bis 3.3.4 ausgemacht. Sie wurde als kritisch eingestuft. Betroffen davon ist ein unbekannter Prozess der Datei xboot-fast/src/main/java/cn/exrick/xboot/modules/base/controller/common/SecurityController.java der Komponente Swagger. Mittels dem Manipulieren des Arguments loginUrl mit unbekannten Daten kann eine server-side request forgery-Schwachstelle ausgenutzt werden. Die Umsetzung des Angriffs kann dabei \u00fcber das Netzwerk erfolgen. Der Exploit steht zur \u00f6ffentlichen Verf\u00fcgung."
}
],
"metrics": [
{
"cvssV4_0": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
"version": "4.0"
}
},
{
"cvssV3_1": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R",
"version": "3.1"
}
},
{
"cvssV3_0": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R",
"version": "3.0"
}
},
{
"cvssV2_0": {
"baseScore": 6.5,
"vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR",
"version": "2.0"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-918",
"description": "Server-Side Request Forgery",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-08-04T21:32:06.008Z",
"orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
"shortName": "VulDB"
},
"references": [
{
"name": "VDB-318653 | Exrick xboot Swagger SecurityController.java server-side request forgery",
"tags": [
"vdb-entry",
"technical-description"
],
"url": "https://vuldb.com/?id.318653"
},
{
"name": "VDB-318653 | CTI Indicators (IOB, IOC, IOA)",
"tags": [
"signature",
"permissions-required"
],
"url": "https://vuldb.com/?ctiid.318653"
},
{
"name": "Submit #622174 | Exrick https://github.com/Exrick/xboot \u003c=3.3.4 SSRF",
"tags": [
"third-party-advisory"
],
"url": "https://vuldb.com/?submit.622174"
},
{
"tags": [
"issue-tracking"
],
"url": "https://github.com/Exrick/xboot/issues/70"
},
{
"tags": [
"exploit",
"issue-tracking"
],
"url": "https://github.com/Exrick/xboot/issues/70#issue-3252425972"
}
],
"timeline": [
{
"lang": "en",
"time": "2025-08-04T00:00:00.000Z",
"value": "Advisory disclosed"
},
{
"lang": "en",
"time": "2025-08-04T02:00:00.000Z",
"value": "VulDB entry created"
},
{
"lang": "en",
"time": "2025-08-04T08:56:42.000Z",
"value": "VulDB entry last update"
}
],
"title": "Exrick xboot Swagger SecurityController.java server-side request forgery"
}
},
"cveMetadata": {
"assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
"assignerShortName": "VulDB",
"cveId": "CVE-2025-8527",
"datePublished": "2025-08-04T21:32:06.008Z",
"dateReserved": "2025-08-04T06:51:25.085Z",
"dateUpdated": "2025-08-05T13:38:09.297Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2025-8529 (GCVE-0-2025-8529)
Vulnerability from cvelistv5 – Published: 2025-08-04 22:32 – Updated: 2025-08-05 13:18
VLAI
Title
cloudfavorites favorites-web CollectController.java getCollectLogoUrl server-side request forgery
Summary
A vulnerability classified as critical was found in cloudfavorites favorites-web up to 1.3.0. Affected by this vulnerability is the function getCollectLogoUrl of the file app/src/main/java/com/favorites/web/CollectController.java. The manipulation of the argument url leads to server-side request forgery. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Severity
CWE
- CWE-918 - Server-Side Request Forgery
Assigner
References
5 references
| URL | Tags |
|---|---|
| https://vuldb.com/?id.318655 | vdb-entrytechnical-description |
| https://vuldb.com/?ctiid.318655 | signaturepermissions-required |
| https://vuldb.com/?submit.622176 | third-party-advisory |
| https://github.com/cloudfavorites/favorites-web/i… | issue-tracking |
| https://github.com/cloudfavorites/favorites-web/i… | exploitissue-tracking |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| cloudfavorites | favorites-web |
Affected:
1.0
Affected: 1.1 Affected: 1.2 Affected: 1.3.0 |
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-8529",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-08-05T13:18:27.747093Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-08-05T13:18:48.609Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "favorites-web",
"vendor": "cloudfavorites",
"versions": [
{
"status": "affected",
"version": "1.0"
},
{
"status": "affected",
"version": "1.1"
},
{
"status": "affected",
"version": "1.2"
},
{
"status": "affected",
"version": "1.3.0"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "reporter",
"value": "ZAST.AI (VulDB User)"
}
],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability classified as critical was found in cloudfavorites favorites-web up to 1.3.0. Affected by this vulnerability is the function getCollectLogoUrl of the file app/src/main/java/com/favorites/web/CollectController.java. The manipulation of the argument url leads to server-side request forgery. The attack can be launched remotely. The exploit has been disclosed to the public and may be used."
},
{
"lang": "de",
"value": "In cloudfavorites favorites-web bis 1.3.0 wurde eine kritische Schwachstelle entdeckt. Es geht um die Funktion getCollectLogoUrl der Datei app/src/main/java/com/favorites/web/CollectController.java. Durch das Manipulieren des Arguments url mit unbekannten Daten kann eine server-side request forgery-Schwachstelle ausgenutzt werden. Der Angriff kann \u00fcber das Netzwerk erfolgen. Der Exploit steht zur \u00f6ffentlichen Verf\u00fcgung."
}
],
"metrics": [
{
"cvssV4_0": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
"version": "4.0"
}
},
{
"cvssV3_1": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R",
"version": "3.1"
}
},
{
"cvssV3_0": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R",
"version": "3.0"
}
},
{
"cvssV2_0": {
"baseScore": 6.5,
"vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR",
"version": "2.0"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-918",
"description": "Server-Side Request Forgery",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-08-04T22:32:05.485Z",
"orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
"shortName": "VulDB"
},
"references": [
{
"name": "VDB-318655 | cloudfavorites favorites-web CollectController.java getCollectLogoUrl server-side request forgery",
"tags": [
"vdb-entry",
"technical-description"
],
"url": "https://vuldb.com/?id.318655"
},
{
"name": "VDB-318655 | CTI Indicators (IOB, IOC, IOA)",
"tags": [
"signature",
"permissions-required"
],
"url": "https://vuldb.com/?ctiid.318655"
},
{
"name": "Submit #622176 | cloudfavorites https://github.com/cloudfavorites/favorites-web \u003c=1.3.0 SSRF",
"tags": [
"third-party-advisory"
],
"url": "https://vuldb.com/?submit.622176"
},
{
"tags": [
"issue-tracking"
],
"url": "https://github.com/cloudfavorites/favorites-web/issues/134"
},
{
"tags": [
"exploit",
"issue-tracking"
],
"url": "https://github.com/cloudfavorites/favorites-web/issues/134#issue-3252105130"
}
],
"timeline": [
{
"lang": "en",
"time": "2025-08-04T00:00:00.000Z",
"value": "Advisory disclosed"
},
{
"lang": "en",
"time": "2025-08-04T02:00:00.000Z",
"value": "VulDB entry created"
},
{
"lang": "en",
"time": "2025-08-04T08:58:22.000Z",
"value": "VulDB entry last update"
}
],
"title": "cloudfavorites favorites-web CollectController.java getCollectLogoUrl server-side request forgery"
}
},
"cveMetadata": {
"assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
"assignerShortName": "VulDB",
"cveId": "CVE-2025-8529",
"datePublished": "2025-08-04T22:32:05.485Z",
"dateReserved": "2025-08-04T06:51:30.565Z",
"dateUpdated": "2025-08-05T13:18:48.609Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2025-8675 (GCVE-0-2025-8675)
Vulnerability from cvelistv5 – Published: 2025-08-15 16:27 – Updated: 2025-08-15 16:47
VLAI
Title
AI SEO Link Advisor - Less critical - Server-side Request Forgery - SA-CONTRIB-2025-095
Summary
Server-Side Request Forgery (SSRF) vulnerability in Drupal AI SEO Link Advisor allows Server Side Request Forgery.This issue affects AI SEO Link Advisor: from 0.0.0 before 1.0.6.
Severity
4.7 (Medium)
CWE
- CWE-918 - Server-Side Request Forgery (SSRF)
Assigner
References
1 reference
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Drupal | AI SEO Link Advisor |
Affected:
0.0.0 , < 1.0.6
(semver)
|
Date Public
2025-08-06 16:50
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2025-8675",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-08-15T16:45:26.218405Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-08-15T16:47:15.896Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://www.drupal.org/project/ai_seo_link_advisor",
"defaultStatus": "unaffected",
"product": "AI SEO Link Advisor",
"repo": "https://git.drupalcode.org/project/ai_seo_link_advisor",
"vendor": "Drupal",
"versions": [
{
"lessThan": "1.0.6",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "Alberto Cocchiara (bigbabert)"
},
{
"lang": "en",
"type": "finder",
"value": "Conrad Lara (cmlara)"
},
{
"lang": "en",
"type": "remediation developer",
"value": "Alberto Cocchiara (bigbabert)"
},
{
"lang": "en",
"type": "remediation developer",
"value": "Conrad Lara (cmlara)"
},
{
"lang": "en",
"type": "remediation developer",
"value": "Vishal Kadam (vishal.kadam)"
},
{
"lang": "en",
"type": "coordinator",
"value": "Benji Fisher (benjifisher)"
},
{
"lang": "en",
"type": "coordinator",
"value": "catch (catch)"
},
{
"lang": "en",
"type": "coordinator",
"value": "Damien McKenna (damienmckenna)"
},
{
"lang": "en",
"type": "coordinator",
"value": "Greg Knaddison (greggles)"
}
],
"datePublic": "2025-08-06T16:50:00.000Z",
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "Server-Side Request Forgery (SSRF) vulnerability in Drupal AI SEO Link Advisor allows Server Side Request Forgery.\u003cp\u003eThis issue affects AI SEO Link Advisor: from 0.0.0 before 1.0.6.\u003c/p\u003e"
}
],
"value": "Server-Side Request Forgery (SSRF) vulnerability in Drupal AI SEO Link Advisor allows Server Side Request Forgery.This issue affects AI SEO Link Advisor: from 0.0.0 before 1.0.6."
}
],
"impacts": [
{
"capecId": "CAPEC-664",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-664 Server Side Request Forgery"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-918",
"description": "CWE-918 Server-Side Request Forgery (SSRF)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-08-15T16:27:21.147Z",
"orgId": "2c85b837-eb8b-40ed-9d74-228c62987387",
"shortName": "drupal"
},
"references": [
{
"url": "https://www.drupal.org/sa-contrib-2025-095"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "AI SEO Link Advisor - Less critical - Server-side Request Forgery - SA-CONTRIB-2025-095",
"x_generator": {
"engine": "Vulnogram 0.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "2c85b837-eb8b-40ed-9d74-228c62987387",
"assignerShortName": "drupal",
"cveId": "CVE-2025-8675",
"datePublished": "2025-08-15T16:27:21.147Z",
"dateReserved": "2025-08-06T16:26:07.494Z",
"dateUpdated": "2025-08-15T16:47:15.896Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2025-8678 (GCVE-0-2025-8678)
Vulnerability from cvelistv5 – Published: 2025-08-22 07:24 – Updated: 2025-08-25 14:38
VLAI
Title
WP Crontrol - 1.17.0 - 1.19.1 - Authenticated (Administrator+) Blind Server-Side Request Forgery
Summary
The WP Crontrol plugin for WordPress is vulnerable to blind Server-Side Request Forgery in versions 1.17.0 to 1.19.1 via the 'wp_remote_request' function. This makes it possible for authenticated attackers, with Administrator-level access and above, to make web requests to arbitrary locations originating from the web application and can be used to query and modify information from internal services.
Severity
5.9 (Medium)
CWE
- CWE-918 - Server-Side Request Forgery (SSRF)
Assigner
References
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| johnbillion | WP Crontrol |
Affected:
1.17.0 , ≤ 1.19.1
(semver)
|
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-8678",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-08-22T10:44:04.483379Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-08-22T10:44:59.019Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "WP Crontrol",
"vendor": "johnbillion",
"versions": [
{
"lessThanOrEqual": "1.19.1",
"status": "affected",
"version": "1.17.0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "Jonas Benjamin Friedli"
}
],
"descriptions": [
{
"lang": "en",
"value": "The WP Crontrol plugin for WordPress is vulnerable to blind Server-Side Request Forgery in versions 1.17.0 to 1.19.1 via the \u0027wp_remote_request\u0027 function. This makes it possible for authenticated attackers, with Administrator-level access and above, to make web requests to arbitrary locations originating from the web application and can be used to query and modify information from internal services."
}
],
"metrics": [
{
"cvssV3_1": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-918",
"description": "CWE-918 Server-Side Request Forgery (SSRF)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-08-25T14:38:29.198Z",
"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599",
"shortName": "Wordfence"
},
"references": [
{
"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/ab40146d-9b49-4214-af73-41c5b5512542?source=cve"
},
{
"url": "https://plugins.trac.wordpress.org/browser/wp-crontrol/trunk/src/bootstrap.php#L2712"
},
{
"url": "https://plugins.trac.wordpress.org/changeset/3347075/"
}
],
"timeline": [
{
"lang": "en",
"time": "2025-08-21T00:00:00.000Z",
"value": "Disclosed"
}
],
"title": "WP Crontrol - 1.17.0 - 1.19.1 - Authenticated (Administrator+) Blind Server-Side Request Forgery"
}
},
"cveMetadata": {
"assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599",
"assignerShortName": "Wordfence",
"cveId": "CVE-2025-8678",
"datePublished": "2025-08-22T07:24:56.107Z",
"dateReserved": "2025-08-06T18:10:40.250Z",
"dateUpdated": "2025-08-25T14:38:29.198Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2025-8680 (GCVE-0-2025-8680)
Vulnerability from cvelistv5 – Published: 2025-08-15 02:24 – Updated: 2026-04-08 17:14
VLAI
Title
B Slider - Gutenberg Slider Block for WP <= 2.0.0 - Authenticated (Subscriber+) Server-Side Request Forgery
Summary
The B Slider- Gutenberg Slider Block for WP plugin for WordPress is vulnerable to Server-Side Request Forgery in version less than, or equal to, 2.0.0 via the fs_api_request function. This makes it possible for authenticated attackers, with subscriber-level access and above to make web requests to arbitrary locations originating from the web application which can be used to query and modify information from internal services.
Severity
4.3 (Medium)
CWE
- CWE-918 - Server-Side Request Forgery (SSRF)
Assigner
References
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| bplugins | bSlider – Create Responsive Image, Post, Product, and Video Sliders |
Affected:
0 , ≤ 2.0.0
(semver)
|
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-8680",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-08-15T12:43:28.009741Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-08-15T12:43:33.637Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "bSlider \u2013 Create Responsive Image, Post, Product, and Video Sliders",
"vendor": "bplugins",
"versions": [
{
"lessThanOrEqual": "2.0.0",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "wesley"
}
],
"descriptions": [
{
"lang": "en",
"value": "The B Slider- Gutenberg Slider Block for WP plugin for WordPress is vulnerable to Server-Side Request Forgery in version less than, or equal to, 2.0.0 via the fs_api_request function. This makes it possible for authenticated attackers, with subscriber-level access and above to make web requests to arbitrary locations originating from the web application which can be used to query and modify information from internal services."
}
],
"metrics": [
{
"cvssV3_1": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-918",
"description": "CWE-918 Server-Side Request Forgery (SSRF)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-04-08T17:14:47.839Z",
"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599",
"shortName": "Wordfence"
},
"references": [
{
"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/ac245316-228e-4508-b3fe-f7071fb1bc8e?source=cve"
},
{
"url": "https://plugins.trac.wordpress.org/browser/b-slider/tags/1.1.30/bplugins_sdk/inc/Base/FSActivate.php#L166"
},
{
"url": "https://plugins.trac.wordpress.org/changeset?sfp_email=\u0026sfph_mail=\u0026reponame=\u0026old=3343487%40b-slider\u0026new=3343487%40b-slider\u0026sfp_email=\u0026sfph_mail="
}
],
"timeline": [
{
"lang": "en",
"time": "2025-07-28T00:00:00.000Z",
"value": "Discovered"
},
{
"lang": "en",
"time": "2025-08-06T19:05:41.000Z",
"value": "Vendor Notified"
},
{
"lang": "en",
"time": "2025-08-14T14:02:06.000Z",
"value": "Disclosed"
}
],
"title": "B Slider - Gutenberg Slider Block for WP \u003c= 2.0.0 - Authenticated (Subscriber+) Server-Side Request Forgery"
}
},
"cveMetadata": {
"assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599",
"assignerShortName": "Wordfence",
"cveId": "CVE-2025-8680",
"datePublished": "2025-08-15T02:24:23.123Z",
"dateReserved": "2025-08-06T18:49:06.064Z",
"dateUpdated": "2026-04-08T17:14:47.839Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2025-8772 (GCVE-0-2025-8772)
Vulnerability from cvelistv5 – Published: 2025-08-09 19:32 – Updated: 2025-08-12 16:04
VLAI
Title
Vinades NukeViet Module index.php server-side request forgery
Summary
A vulnerability, which was classified as problematic, has been found in Vinades NukeViet up to 4.5.06. This issue affects some unknown processing of the file /admin/index.php?language=en&nv=upload of the component Module Handler. The manipulation leads to server-side request forgery. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity
CWE
- CWE-918 - Server-Side Request Forgery
Assigner
References
4 references
| URL | Tags |
|---|---|
| https://vuldb.com/?id.319295 | vdb-entry |
| https://vuldb.com/?ctiid.319295 | signaturepermissions-required |
| https://vuldb.com/?submit.624976 | third-party-advisory |
| https://hkohi.ca/vulnerability/19 | exploit |
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-8772",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-08-11T15:22:35.977181Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-08-12T16:04:32.845Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"references": [
{
"tags": [
"exploit"
],
"url": "https://hkohi.ca/vulnerability/19"
}
],
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"modules": [
"Module Handler"
],
"product": "NukeViet",
"vendor": "Vinades",
"versions": [
{
"status": "affected",
"version": "4.5.06"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "reporter",
"value": "0xHamy (VulDB User)"
}
],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability, which was classified as problematic, has been found in Vinades NukeViet up to 4.5.06. This issue affects some unknown processing of the file /admin/index.php?language=en\u0026nv=upload of the component Module Handler. The manipulation leads to server-side request forgery. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way."
},
{
"lang": "de",
"value": "Eine Schwachstelle wurde in Vinades NukeViet bis 4.5.06 entdeckt. Sie wurde als problematisch eingestuft. Davon betroffen ist unbekannter Code der Datei /admin/index.php?language=en\u0026nv=upload der Komponente Module Handler. Durch das Beeinflussen mit unbekannten Daten kann eine server-side request forgery-Schwachstelle ausgenutzt werden. Der Angriff kann \u00fcber das Netzwerk erfolgen. Der Exploit steht zur \u00f6ffentlichen Verf\u00fcgung."
}
],
"metrics": [
{
"cvssV4_0": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P",
"version": "4.0"
}
},
{
"cvssV3_1": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:P/RL:X/RC:R",
"version": "3.1"
}
},
{
"cvssV3_0": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:P/RL:X/RC:R",
"version": "3.0"
}
},
{
"cvssV2_0": {
"baseScore": 4,
"vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N/E:POC/RL:ND/RC:UR",
"version": "2.0"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-918",
"description": "Server-Side Request Forgery",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-08-09T19:32:06.289Z",
"orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
"shortName": "VulDB"
},
"references": [
{
"name": "VDB-319295 | Vinades NukeViet Module index.php server-side request forgery",
"tags": [
"vdb-entry"
],
"url": "https://vuldb.com/?id.319295"
},
{
"name": "VDB-319295 | CTI Indicators (IOB, IOC, IOA)",
"tags": [
"signature",
"permissions-required"
],
"url": "https://vuldb.com/?ctiid.319295"
},
{
"name": "Submit #624976 | VINADES.,JSC NukeViet 4.5.06 Internal File Read",
"tags": [
"third-party-advisory"
],
"url": "https://vuldb.com/?submit.624976"
},
{
"tags": [
"exploit"
],
"url": "https://hkohi.ca/vulnerability/19"
}
],
"timeline": [
{
"lang": "en",
"time": "2025-08-08T00:00:00.000Z",
"value": "Advisory disclosed"
},
{
"lang": "en",
"time": "2025-08-08T02:00:00.000Z",
"value": "VulDB entry created"
},
{
"lang": "en",
"time": "2025-08-08T22:18:50.000Z",
"value": "VulDB entry last update"
}
],
"title": "Vinades NukeViet Module index.php server-side request forgery"
}
},
"cveMetadata": {
"assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
"assignerShortName": "VulDB",
"cveId": "CVE-2025-8772",
"datePublished": "2025-08-09T19:32:06.289Z",
"dateReserved": "2025-08-08T20:13:28.806Z",
"dateUpdated": "2025-08-12T16:04:32.845Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2025-9269 (GCVE-0-2025-9269)
Vulnerability from cvelistv5 – Published: 2025-09-09 17:21 – Updated: 2025-09-29 15:34
VLAI
Title
Server-Side Request Forgery (SSRF) vulnerability found in embedded web server
Summary
A Server-Side Request Forgery (SSRF) vulnerability has been identified in the embedded web server in various Lexmark devices. This vulnerability can be leveraged by an attacker to force the device to send an arbitrary HTTP request to a third-party server. Successful exploitation of this vulnerability can lead to internal network access / potential data disclosure from a device.
Severity
CWE
- CWE-918 - Server-Side Request Forgery (SSRF)
Assigner
References
1 reference
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Lexmark | CX, XC, CS, MS, MX, XM, et. al. |
Affected:
0 , ≤ CXTLS.250.199
(custom)
Affected: 0 , ≤ MXTLS.250.199 (custom) Affected: 0 , ≤ CSTLS.250.199 (custom) Affected: 0 , ≤ MSNSN.250.199 (custom) Affected: 0 , ≤ MSTSN.250.199 (custom) Affected: 0 , ≤ MXTSN.250.199 (custom) Affected: 0 , ≤ CSNGV.250.199 (custom) Affected: 0 , ≤ CSTGV.250.199 (custom) Affected: 0 , ≤ CXTGV.250.199 (custom) Affected: 0 , ≤ CXTPC.250.199 (custom) Affected: 0 , ≤ CSTPC.250.199 (custom) Affected: 0 , ≤ MXTCT.250.199 (custom) Affected: 0 , ≤ MXTPM.250.199 (custom) Affected: 0 , ≤ CXTMM.250.199 (custom) Affected: 0 , ≤ CSTMM.250.199 (custom) Affected: 0 , ≤ MSNGM.250.199 (custom) Affected: 0 , ≤ MSTGM.250.199 (custom) Affected: 0 , ≤ MXNGM.250.199 (custom) Affected: 0 , ≤ MXTGM.250.199 (custom) Affected: 0 , ≤ MSNGW.250.199 (custom) Affected: 0 , ≤ MSTGW.250.199 (custom) Affected: 0 , ≤ MXTGW.250.199 (custom) Affected: 0 , ≤ CSTZJ.250.199 (custom) Affected: 0 , ≤ CSNZJ.250.199 (custom) Affected: 0 , ≤ CXTZJ.250.199 (custom) Affected: 0 , ≤ CXNZJ.250.199 (custom) Affected: 0 , ≤ MSLSG.230.466 (custom) Affected: 0 , ≤ MXLSG.230.466 (custom) Affected: 0 , ≤ MSLBD.230.466 (custom) Affected: 0 , ≤ MXLBD.230.466 (custom) Affected: 0 , ≤ CSLBN.230.466 (custom) Affected: 0 , ≤ CSLBL.230.466 (custom) Affected: 0 , ≤ CXLBN.230.466 (custom) Affected: 0 , ≤ CXLBL.230.466 (custom) Affected: 0 , ≤ CXTPP.230.466 (custom) Affected: 0 , ≤ CSTPP.230.466 (custom) Affected: 0 , ≤ CSTAT.230.466 (custom) Affected: 0 , ≤ CXTAT.230.466 (custom) Affected: 0 , ≤ CSTMH.230.466 (custom) Affected: 0 , ≤ CXTMH.230.466 (custom) Affected: 0 , ≤ LW90.TL2.P224 (custom) Affected: 0 , ≤ LW90.PR2.P224 (custom) Affected: 0 , ≤ LW90.PR4.P224 (custom) Affected: 0 , ≤ LW90.SB4.P224 (custom) Affected: 0 , ≤ LW90.SB7.P224 (custom) Affected: 0 , ≤ LW90.DN2.P224 (custom) Affected: 0 , ≤ LW90.DN4.P224 (custom) Affected: 0 , ≤ LW90.DN7.P224 (custom) Affected: 0 , ≤ LW90.TU.P224 (custom) Affected: 0 , ≤ LW90.SA.P224 (custom) Affected: 0 , ≤ LW90.MG.P224 (custom) Affected: 0 , ≤ LW90.GM7.P224 (custom) Affected: 0 , ≤ LW90.GM4.P224 (custom) Affected: 0 , ≤ LW90.VY4.P224 (custom) Affected: 0 , ≤ LW80.PRL.P260 (custom) Affected: 0 , ≤ LW80.SB2.P260 (custom) Affected: 0 , ≤ LW80.VYL.P260 (custom) Affected: 0 , ≤ LW80.VY2.P260 (custom) Affected: 0 , ≤ LW80.GM2.P260 (custom) |
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-9269",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-09-09T17:43:57.556819Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-09-09T18:36:21.085Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"modules": [
"webserver"
],
"product": "CX, XC, CS, MS, MX, XM, et. al.",
"vendor": "Lexmark",
"versions": [
{
"changes": [
{
"at": "CXTLS.250.200 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTLS.250.199",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTLS.250.200 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTLS.250.199",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTLS.250.200 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTLS.250.199",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNSN.250.200 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSNSN.250.199",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSTSN.250.200 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSTSN.250.199",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTSN.250.200 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTSN.250.199",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSNGV.250.200 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSNGV.250.199",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTGV.250.200 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTGV.250.199",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTGV.250.200 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTGV.250.199",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTPC.250.200 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTPC.250.199",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTPC.250.200 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTPC.250.199",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTCT.250.200 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTCT.250.199",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTPM.250.200 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTPM.250.199",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTMM.250.200 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTMM.250.199",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTMM.250.200 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTMM.250.199",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNGM.250.200 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSNGM.250.199",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSTGM.250.200 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSTGM.250.199",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXNGM.250.200 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXNGM.250.199",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTGM.250.200 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTGM.250.199",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNGW.250.200 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSNGW.250.199",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSTGW.250.200 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSTGW.250.199",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTGW.250.200 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTGW.250.199",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTZJ.250.200 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTZJ.250.199",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSNZJ.250.200 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSNZJ.250.199",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTZJ.250.200 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTZJ.250.199",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXNZJ.250.200 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXNZJ.250.199",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSLSG.230.467 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSLSG.230.466",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXLSG.230.467 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXLSG.230.466",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSLBD.230.467 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSLBD.230.466",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXLBD.230.467 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXLBD.230.466",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSLBN.230.467 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSLBN.230.466",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSLBL.230.467 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSLBL.230.466",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXLBN.230.467 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXLBN.230.466",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXLBL.230.467 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXLBL.230.466",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTPP.230.467 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTPP.230.466",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTPP.230.467 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTPP.230.466",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTAT.230.467 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTAT.230.466",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTAT.230.467 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTAT.230.466",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTMH.230.467 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTMH.230.466",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTMH.230.467 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTMH.230.466",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.TL2.P225 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.TL2.P224",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.PR2.P225 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.PR2.P224",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.PR4.P225 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.PR4.P224",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.SB4.P225 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.SB4.P224",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.SB7.P225 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.SB7.P224",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.DN2.P225 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.DN2.P224",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.DN4.P225 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.DN4.P224",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.DN7.P225 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.DN7.P224",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.TU.P225 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.TU.P224",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.SA.P225 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.SA.P224",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.MG.P225 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.MG.P224",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.GM7.P225 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.GM7.P224",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.GM4.P225 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.GM4.P224",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.VY4.P225 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.VY4.P224",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.PRL.P261 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.PRL.P260",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.SB2.P261 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.SB2.P260",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.VYL.P261 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.VYL.P260",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.VY2.P261 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.VY2.P260",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.GM2.P261 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.GM2.P260",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "A Server-Side Request Forgery (SSRF) vulnerability has been identified in the embedded web server in various Lexmark devices. This vulnerability can be leveraged by an attacker to force the device to send an arbitrary HTTP request to a third-party server.\u0026nbsp;Successful exploitation of this vulnerability can lead to internal network access / potential data disclosure from a device."
}
],
"value": "A Server-Side Request Forgery (SSRF) vulnerability has been identified in the embedded web server in various Lexmark devices. This vulnerability can be leveraged by an attacker to force the device to send an arbitrary HTTP request to a third-party server.\u00a0Successful exploitation of this vulnerability can lead to internal network access / potential data disclosure from a device."
}
],
"impacts": [
{
"capecId": "CAPEC-101",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-101 Server Side Include (SSI) Injection"
}
]
},
{
"capecId": "CAPEC-33",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-33: HTTP Request Smuggling"
}
]
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "NETWORK",
"baseScore": 6.9,
"baseSeverity": "MEDIUM",
"privilegesRequired": "NONE",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "LOW",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "NONE",
"vulnConfidentialityImpact": "LOW",
"vulnIntegrityImpact": "NONE",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-918",
"description": "CWE-918: Server-Side Request Forgery (SSRF)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-09-29T15:34:06.094Z",
"orgId": "7bc73191-a2b6-4c63-9918-753964601853",
"shortName": "Lexmark"
},
"references": [
{
"url": "https://www.lexmark.com/en_us/solutions/security/lexmark-security-advisories.html"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Server-Side Request Forgery (SSRF) vulnerability found in embedded web server",
"x_generator": {
"engine": "Vulnogram 0.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "7bc73191-a2b6-4c63-9918-753964601853",
"assignerShortName": "Lexmark",
"cveId": "CVE-2025-9269",
"datePublished": "2025-09-09T17:21:36.589Z",
"dateReserved": "2025-08-20T15:10:24.655Z",
"dateUpdated": "2025-09-29T15:34:06.094Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2025-9395 (GCVE-0-2025-9395)
Vulnerability from cvelistv5 – Published: 2025-08-24 22:02 – Updated: 2025-08-25 16:49
VLAI
Title
wangsongyan wblog backup.go RestorePost server-side request forgery
Summary
A vulnerability was identified in wangsongyan wblog 0.0.1. This affects the function RestorePost of the file backup.go. Such manipulation of the argument fileName leads to server-side request forgery. It is possible to launch the attack remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity
CWE
- CWE-918 - Server-Side Request Forgery
Assigner
References
5 references
| URL | Tags |
|---|---|
| https://vuldb.com/?id.321231 | vdb-entrytechnical-description |
| https://vuldb.com/?ctiid.321231 | signaturepermissions-required |
| https://vuldb.com/?submit.632367 | third-party-advisory |
| https://github.com/on-theway/wblog/blob/main/README.md | related |
| https://github.com/on-theway/wblog/blob/main/READ… | exploit |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| wangsongyan | wblog |
Affected:
0.0.1
|
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-9395",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-08-25T16:49:27.241433Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-08-25T16:49:34.326Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "wblog",
"vendor": "wangsongyan",
"versions": [
{
"status": "affected",
"version": "0.0.1"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "reporter",
"value": "OnTheWay (VulDB User)"
}
],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability was identified in wangsongyan wblog 0.0.1. This affects the function RestorePost of the file backup.go. Such manipulation of the argument fileName leads to server-side request forgery. It is possible to launch the attack remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way."
},
{
"lang": "de",
"value": "In wangsongyan wblog 0.0.1 ist eine Schwachstelle entdeckt worden. Dabei betrifft es die Funktion RestorePost der Datei backup.go. Dank Manipulation des Arguments fileName mit unbekannten Daten kann eine server-side request forgery-Schwachstelle ausgenutzt werden. Der Angriff kann \u00fcber das Netzwerk passieren. Der Exploit wurde der \u00d6ffentlichkeit bekannt gemacht und k\u00f6nnte verwendet werden."
}
],
"metrics": [
{
"cvssV4_0": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
"version": "4.0"
}
},
{
"cvssV3_1": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R",
"version": "3.1"
}
},
{
"cvssV3_0": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R",
"version": "3.0"
}
},
{
"cvssV2_0": {
"baseScore": 6.5,
"vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR",
"version": "2.0"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-918",
"description": "Server-Side Request Forgery",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-08-24T22:02:05.588Z",
"orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
"shortName": "VulDB"
},
"references": [
{
"name": "VDB-321231 | wangsongyan wblog backup.go RestorePost server-side request forgery",
"tags": [
"vdb-entry",
"technical-description"
],
"url": "https://vuldb.com/?id.321231"
},
{
"name": "VDB-321231 | CTI Indicators (IOB, IOC, IOA)",
"tags": [
"signature",
"permissions-required"
],
"url": "https://vuldb.com/?ctiid.321231"
},
{
"name": "Submit #632367 | GitHub wblog 0.0.1 Server-Side Request Forgery",
"tags": [
"third-party-advisory"
],
"url": "https://vuldb.com/?submit.632367"
},
{
"tags": [
"related"
],
"url": "https://github.com/on-theway/wblog/blob/main/README.md"
},
{
"tags": [
"exploit"
],
"url": "https://github.com/on-theway/wblog/blob/main/README.md#vulnerability-details-and-poc"
}
],
"timeline": [
{
"lang": "en",
"time": "2025-08-24T00:00:00.000Z",
"value": "Advisory disclosed"
},
{
"lang": "en",
"time": "2025-08-24T02:00:00.000Z",
"value": "VulDB entry created"
},
{
"lang": "en",
"time": "2025-08-24T16:33:04.000Z",
"value": "VulDB entry last update"
}
],
"title": "wangsongyan wblog backup.go RestorePost server-side request forgery"
}
},
"cveMetadata": {
"assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
"assignerShortName": "VulDB",
"cveId": "CVE-2025-9395",
"datePublished": "2025-08-24T22:02:05.588Z",
"dateReserved": "2025-08-24T14:28:00.965Z",
"dateUpdated": "2025-08-25T16:49:34.326Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
No mitigation information available for this CWE.
CAPEC-664: Server Side Request Forgery
An adversary exploits improper input validation by submitting maliciously crafted input to a target application running on a server, with the goal of forcing the server to make a request either to itself, to web services running in the server’s internal network, or to external third parties. If successful, the adversary’s request will be made with the server’s privilege level, bypassing its authentication controls. This ultimately allows the adversary to access sensitive data, execute commands on the server’s network, and make external requests with the stolen identity of the server. Server Side Request Forgery attacks differ from Cross Site Request Forgery attacks in that they target the server itself, whereas CSRF attacks exploit an insecure user authentication mechanism to perform unauthorized actions on the user's behalf.