DuckDuckGo: SSRF vulnerability on (access to metadata server on AWS)

ID H1:395521
Type hackerone
Reporter cujanovic
Modified 2018-10-31T17:33:34


Hello, I saw that SSRF on is out of scope but because of the severity I wanted to report this. The payload is simple: curl ""

Response from the server: ami-id ami-launch-index ami-manifest-path block-device-mapping/ hostname instance-action instance-id instance-type local-hostname local-ipv4 mac metrics/ network/ placement/ profile public-hostname public-ipv4 public-keys/ reservation-id security-groups services/


access information on internal AWS metadata server.