Lucene search
+L

5 matches found

redhatcve
redhatcve
added 2025/06/29 1:20 p.m.7 views

CVE-2025-53018

Lychee is a free, open-source photo-management tool. Prior to version 6.6.13, a critical Server-Side Request Forgery SSRF vulnerability exists in the /api/v2/Photo::fromUrl endpoint. This flaw lets an attacker instruct the application’s backend to make HTTP requests to any URL they choose...

3CVSS7AI score0.00168EPSS
Exploits0References1
nvd
nvd
added 2025/06/27 1:15 p.m.8 views

CVE-2025-53018

Lychee is a free, open-source photo-management tool. Prior to version 6.6.13, a critical Server-Side Request Forgery SSRF vulnerability exists in the /api/v2/Photo::fromUrl endpoint. This flaw lets an attacker instruct the application’s backend to make HTTP requests to any URL they choose...

3CVSS0.00168EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2025/06/27 1:0 p.m.5 views

CVE-2025-53018 Lychee has Server-Side Request Forgery (SSRF) in Photo::fromUrl API via unvalidated remote image URLs

Lychee is a free, open-source photo-management tool. Prior to version 6.6.13, a critical Server-Side Request Forgery SSRF vulnerability exists in the /api/v2/Photo::fromUrl endpoint. This flaw lets an attacker instruct the application’s backend to make HTTP requests to any URL they choose...

3CVSS7AI score0.00168EPSS
Exploits0References2
cvelist
cvelist
added 2025/06/27 1:0 p.m.13 views

CVE-2025-53018 Lychee has Server-Side Request Forgery (SSRF) in Photo::fromUrl API via unvalidated remote image URLs

Lychee is a free, open-source photo-management tool. Prior to version 6.6.13, a critical Server-Side Request Forgery SSRF vulnerability exists in the /api/v2/Photo::fromUrl endpoint. This flaw lets an attacker instruct the application’s backend to make HTTP requests to any URL they choose...

3CVSS0.00168EPSS
Exploits0References2
cve
cve
added 2025/06/27 1:0 p.m.31 views

CVE-2025-53018

Lychee prior to v6.6.13 contains a Server-Side Request Forgery in the /api/v2/Photo::fromUrl endpoint. The flaw allows the backend to fetch arbitrary URLs server-side (via fopen()) with no IP validation, allow-list, timeout, or size limits, enabling an attacker to target internal resources (e.g.,...

3CVSS6.4AI score0.00168EPSS
Exploits0References2
Rows per page
Query Builder