Lucene search
GoogleOSV:GHSA-WX24-VQRG-M6M5HistoryMay 22, 2024 - 9:30 p.m.
VuFind Server-Side Request Forgery (SSRF) vulnerability
2024-05-2221:30:35
Google
osv.dev
1
server-side request forgery
open library foundation vufind
remote code execution
php runtime setting
default installations
config.ini
software
A Server-Side Request Forgery (SSRF) vulnerability in the /Upgrade/FixConfig route in Open Library Foundation VuFind 2.0 through 9.1 before 9.1.1 allows a remote attacker to overwrite local configuration files to gain access to the administrator panel and achieve Remote Code Execution. A mitigating factor is that it requires the allow_url_include PHP runtime setting to be on, which is off in default installations. It also requires the /Upgrade route to be exposed, which is exposed by default after installing VuFind, and is recommended to be disabled by setting autoConfigure to false in config.ini.
| CPE | Name | Operator | Version |
|---|---|---|---|
| vufind/vufind | eq | 2.5 | |
| vufind/vufind | eq | 2.5.2 | |
| vufind/vufind | eq | 5.0 | |
| vufind/vufind | eq | 6.0 | |
| vufind/vufind | eq | 4.1.1 | |
| vufind/vufind | eq | 7.0 | |
| vufind/vufind | eq | 7.1 | |
| vufind/vufind | eq | 3.1 | |
| vufind/vufind | eq | 7.1.1 | |
| vufind/vufind | eq | 8.0.4 |
Related
github
github
VuFind Server-Side Request Forgery (SSRF) vulnerability
2024-05-22 21:30:35
cvelist
cvelist
CVE-2024-25738
1976-01-01 00:00:00
veracode
veracode
Server-Side Request Forgery (SSRF)
2024-05-27 03:34:43
cve
cve
CVE-2024-25738
2024-05-22 19:15:08
nvd
nvd
CVE-2024-25738
2024-05-22 19:15:08