Wallos: SSRF via HTTP Proxy Environment Variable

Wallos is an open-source, self-hostable personal subscription tracker. Prior to version 4.7.0, Wallos endpoints/logos/search.php accepts HTTP_PROXY and HTTPS_PROXY environment variables without validation, enabling SSRF via proxy hijacking. The server performs DNS resolution on user-supplied search terms, which can be controlled by attackers to trigger outbound requests to arbitrary domains. This issue has been patched in version 4.7.0.

N/A

服务端请求伪造(SSRF)

Wallos 安全漏洞

Wallos是Miguel Ribeiro个人开发者的一个开源个人订阅跟踪器。 Wallos 4.7.0之前版本存在安全漏洞，该漏洞源于endpoints/logos/search.php接受未经验证的HTTP_PROXY和HTTPS_PROXY环境变量，可能导致通过代理劫持进行SSRF攻击。

N/A

N/A