Itwanger Paicoding 1.0.0-1.0.3: Save Function Allows Remote Attack

Summary

The Save function in Itwanger Paicoding versions 1.0.0 to 1.0.3 can be exploited by an attacker to trick the server into performing unauthorized actions. This could happen if you use the affected software, especially if it's connected to the internet. Update to the latest version as soon as possible to fix this issue.

What to do

No fix is available yet. Check with your software vendor for updates.

Affected software

Vendor	Product	Affected versions	Fix available
itwanger	paicoding	1.0.0	–
itwanger	paicoding	1.0.1	–
itwanger	paicoding	1.0.2	–
itwanger	paicoding	1.0.3	–

Original title

A vulnerability was identified in itwanger paicoding 1.0.0/1.0.1/1.0.2/1.0.3. The impacted element is the function Save of the file paicoding-web/src/main/java/com/github/paicoding/forum/web/common...

Original description

A vulnerability was identified in itwanger paicoding 1.0.0/1.0.1/1.0.2/1.0.3. The impacted element is the function Save of the file paicoding-web/src/main/java/com/github/paicoding/forum/web/common/image/rest/ImageRestController.java of the component Image Save Endpoint. Such manipulation of the argument img leads to server-side request forgery. The attack may be launched remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.

nvd CVSS2.0 6.5

nvd CVSS3.1 4.3

nvd CVSS4.0 5.3

Vulnerability type

CWE-918 Server-Side Request Forgery (SSRF)

https://fx4tqqfvdw4.feishu.cn/docx/NK7KdbIrboeB6WxwfhucW1YgnCb?from=from_copylin... Exploit Third Party Advisory
https://vuldb.com/?ctiid.348015 VDB Entry Permissions Required
https://vuldb.com/?id.348015 Third Party Advisory VDB Entry
https://vuldb.com/?submit.758974 Third Party Advisory VDB Entry