TheLibrarian Web Fetch Tool Adminer Access Vulnerability

A vulnerability exists in TheLibrarian web application that allows the web_fetch tool to retrieve content from the Adminer interface. This could potentially be exploited to log into the internal TheLibrarian backend system. The issue arises from the web_fetch tool's improper validation of URLs, enabling it to access private IP addresses and hostnames. As a result, internal services, including Adminer login pages, can be accessed and exploited. The vulnerability has been fixed in all affected versions.

Impact

Exploitation of this vulnerability could lead to unauthorized access to the internal TheLibrarian backend system via the Adminer interface, allowing for potential manipulation or extraction of database information.

Reproduction

The vulnerability can be reproduced by using TheLibrarian's web_fetch tool to fetch content from an Adminer login page accessed through a private IP or hostname. This can be achieved by encoding the IP address or hostname in a way that bypasses the tool's URL validation, effectively tricking it into retrieving internal Adminer pages.