Description

A reverse proxy uses the values of an HTTP request to route the request. Due to the proxy's insecure configuration, it leads to SSRF vulnerability. SSRF as in Server Side Request Forgery is a vulnerability that allows an attacker to force a server into sending requests to arbitrary hosts, including cloud metadata endpoints.

Remediation

Restrict the reverse proxy to route to arbitrary hosts

References

What is Server Side Request Forgery (SSRF)?

Trust No One: The Perils of Trusting User Input

Related Vulnerabilities

WordPress Plugin Easy Digital Downloads-Simple eCommerce for Selling Digital Files Information Disclosure (2.7.6)

Django Debug Toolbar

WordPress Plugin Contact Form Email Information Disclosure (1.2.66)

WordPress Plugin WP-RecentComments Information Disclosure (2.2.7)

WordPress Plugin Simple History Information Disclosure (1.0.7)

Severity

High

Classification

CWE-918 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

SSRF Information Disclosure