PublicCMS Server-Side Request Forgery Vulnerability in SimpleAiAdminController

A server-side request forgery (SSRF) vulnerability exists in PublicCMS version 5.202506.b, specifically within the chat interface of the SimpleAiAdminController. This vulnerability allows an attacker with administrator privileges to manipulate the AI service URL configuration and trigger unauthorized HTTP requests to external or internal services, including cloud metadata endpoints.

Impact

Exploitation of this vulnerability allows for server-side request forgery, where an attacker can make the server send requests to internal services or external endpoints, potentially leading to unauthorized data access or interaction with internal applications.

Reproduction

To reproduce this vulnerability, log into PublicCMS as an administrator using the default credentials 'test' for both username and password. Once logged in, navigate to the Simple Ai Admin Controller chat interface. Set the 'chat.api.URL' configuration to a malicious address, such as a cloud metadata service or an internal network resource. When the chat function is used, the server will make a request to the specified URL, demonstrating the SSRF vulnerability.