Wangl1989 MySiteForMe Server-Side Request Forgery Vulnerability

A critical server-side request forgery (SSRF) vulnerability has been identified in Wangl1989 MySiteForMe version 1.0. The issue arises in the 'doContent' function of the 'FileController' Java file, where the 'content' argument is not properly validated. This lack of filtering allows remote attackers to manipulate requests, potentially leading to unauthorized access to internal resources or services.

Impact

Exploitation of this vulnerability allows for server-side request forgery, where an attacker can send crafted requests from the server to internal or external resources, potentially leading to unauthorized data access or manipulation.

Reproduction

The vulnerability can be reproduced by sending a POST request to the '/file/doContent' endpoint. The request must include a 'content' parameter with an image tag that references a local file, such as 'C:/windows/win.ini'. This will trick the server into fetching the file and returning it in the response.