elecV2 elecV2P Server-Side Request Forgery Vulnerability

A server-side request forgery (SSRF) vulnerability has been identified in elecV2 elecV2P versions through 3.8.3. The issue arises in the URL Handler component, specifically within the eAxios function of the /mock file. The vulnerability allows for the manipulation of the req argument, enabling attackers to send requests to internal servers. This flaw can be exploited remotely, and a public exploit is available.

Impact

Exploitation of this vulnerability allows for server-side request forgery, where an attacker can make the server send requests to internal or external resources on their behalf. This could lead to unauthorized access to internal services, data exfiltration, or interaction with other systems in a way that could cause harm.

Reproduction

To reproduce this vulnerability, send a PUT request to the /mock endpoint with a payload that includes a request object. The payload should specify a URL that the server will fetch. This can be done using a tool like curl or Postman, or by writing a script that sends the request. The response should indicate that the request was successful, confirming the exploitation of the SSRF vulnerability.