Postiz has Server-Side Request Forgery via Redirect Bypass in /api/public/stream

Postiz is an AI social media scheduling tool. Prior to 2.21.5, the /api/public/stream endpoint is vulnerable to SSRF. Although the application validates the initially supplied URL and blocks direct private/internal hosts, it does not re-validate the final destination after HTTP redirects. As a result, an attacker can supply a public HTTPS URL that passes validation and then redirects the server-side request to an internal resource.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L

服务端请求伪造(SSRF)

Gitroom Postiz 代码问题漏洞

Gitroom Postiz是Gitroom开源的一个社交媒体日程安排工具。 Gitroom Postiz 2.21.5之前版本存在代码问题漏洞，该漏洞源于/api/public/stream端点存在服务端请求伪造，应用程序在HTTP重定向后未重新验证最终目标，可能导致攻击者通过重定向访问内部资源。

N/A

N/A