Server-Side Request Forgery (SSRF)

Property
Languagejavascript
Severitylow
CWECWE-918: Server-Side Request Forgery (SSRF)
OWASPA10:2021 - Server-Side Request Forgery (SSRF)
Confidence LevelLow
Impact LevelLow
Likelihood LevelLow

Description

Passing unvalidated user input directly to Playwright’s goto() method can let attackers control which URLs are accessed. This exposes your application to unintended or malicious requests initiated by your server.

Impact

If exploited, an attacker could force your server to make requests to internal services or external sites, leading to data exposure, unauthorized actions, or use of your infrastructure in further attacks. This can compromise sensitive information and internal network security.

Server-Side Request Forgery (SSRF)

Property
Languagejavascript
Severitymedium
CWECWE-918: Server-Side Request Forgery (SSRF)
OWASPA10:2021 - Server-Side Request Forgery (SSRF)
Confidence LevelLow
Impact LevelHigh
Likelihood LevelLow

Description

Passing untrusted user input directly to Playwright’s addInitScript method allows attackers to inject and execute arbitrary scripts in browser contexts. This can expose your application to security risks if the input is not properly validated or sanitized.

Impact

If exploited, an attacker could execute malicious code in the browser, potentially leading to unauthorized data access, session hijacking, or performing actions as the user. This can compromise sensitive information, user accounts, or even allow the attacker to interact with internal resources via SSRF.

Server-Side Request Forgery (SSRF)

Property
Languagejavascript
Severitylow
CWECWE-918: Server-Side Request Forgery (SSRF)
OWASPA10:2021 - Server-Side Request Forgery (SSRF)
Confidence LevelLow
Impact LevelLow
Likelihood LevelLow

Description

Passing untrusted user data directly into Playwright’s evaluate methods can let attackers execute arbitrary code within the browser context. This exposes your application to security risks when inputs are not properly validated or sanitized.

Impact

If exploited, an attacker could run malicious scripts in the browser, potentially accessing sensitive data, manipulating web pages, or making unauthorized requests from your server. This can lead to data breaches, server-side request forgery (SSRF), or other compromises affecting users and backend systems.

Server-Side Request Forgery (SSRF)

Property
Languagejavascript
Severitylow
CWECWE-918: Server-Side Request Forgery (SSRF)
OWASPA10:2021 - Server-Side Request Forgery (SSRF)
Confidence LevelLow
Impact LevelMedium
Likelihood LevelLow

Description

User-provided input is being passed directly to Axios for making HTTP requests without validation. This allows attackers to control the destination of server-side requests, potentially accessing internal or sensitive resources.

Impact

If exploited, an attacker could make your server send requests to internal services, cloud metadata endpoints, or restricted APIs, possibly exposing sensitive data, internal network structure, or credentials. This can lead to data breaches, unauthorized actions, or further compromise of your infrastructure.

Server-Side Request Forgery (SSRF)

Property
Languagejavascript
Severitylow
CWECWE-918: Server-Side Request Forgery (SSRF)
OWASPA10:2021 - Server-Side Request Forgery (SSRF)
Confidence LevelLow
Impact LevelLow
Likelihood LevelLow

Description

Passing untrusted user input directly to the wkhtmltoimage library allows attackers to control what resources the server accesses. This can lead to the server making unintended requests on behalf of the attacker.

Impact

If exploited, an attacker could trick the server into accessing internal services or sensitive resources, potentially exposing confidential data or enabling further attacks inside your network. This can result in data breaches or compromise of internal systems.

Server-Side Request Forgery (SSRF)

Property
Languagephp
Severitymedium
CWECWE-918: Server-Side Request Forgery (SSRF)
OWASPA10:2021 - Server-Side Request Forgery (SSRF)
Confidence LevelLow
Impact LevelHigh
Likelihood LevelLow

Description

The application uses user-supplied input (such as GET, POST, COOKIE, or REQUEST data) directly in functions that make server-side HTTP requests (like curl, fopen, or file_get_contents) without proper validation. This allows attackers to control server-side requests and potentially access internal resources.

Server-Side Request Forgery (SSRF)

Property
Languagephp
Severitymedium
CWECWE-918: Server-Side Request Forgery (SSRF)
OWASPA10:2021 - Server-Side Request Forgery (SSRF)
Confidence LevelMedium
Impact LevelMedium
Likelihood LevelMedium

Description

User input is being used directly to set the host in a URL for a server-side request, allowing attackers to control where requests are sent. This makes it possible for untrusted users to target arbitrary servers using your application’s permissions.

Impact

If exploited, attackers could have your server send requests to malicious or internal systems, potentially leaking sensitive data (like cookies or authorization tokens) or probing your internal network. This could lead to data breaches, exposure of internal services, or facilitate further attacks against your infrastructure.

Server-Side Request Forgery (SSRF)

Property
Languagephp
Severitymedium
CWECWE-918: Server-Side Request Forgery (SSRF)
OWASPA10:2021 - Server-Side Request Forgery (SSRF)
Confidence LevelMedium
Impact LevelMedium
Likelihood LevelMedium

Description

The code uses file names taken directly from user input (like $_GET, $_POST, etc.) when working with file operations. This allows users to control which files are accessed or modified, making the application vulnerable if the input isn’t properly validated or sanitized.

Server-Side Request Forgery (SSRF)

Property
Languagepython
Severityhigh
CWECWE-918: Server-Side Request Forgery (SSRF)
OWASPA10:2021 - Server-Side Request Forgery (SSRF)
Confidence LevelMedium
Impact LevelHigh
Likelihood LevelMedium

Description

The code uses unvalidated input from HTTP request data (such as query parameters or form fields) to build new outgoing requests with the ‘requests’ library. This allows attackers to control the destination of server-side requests, exposing the app to SSRF vulnerabilities.

Server-Side Request Forgery (SSRF)

Property
Languagepython
Severitymedium
CWECWE-918: Server-Side Request Forgery (SSRF)
OWASPA10:2021 - Server-Side Request Forgery (SSRF)
Confidence LevelMedium
Impact LevelMedium
Likelihood LevelMedium

Description

User input is being used directly to construct the host part of a URL for outgoing requests. This means attackers can control where your server sends requests, which is unsafe.

Impact

An attacker could make your server send requests to malicious or internal systems, potentially leaking sensitive data (like cookies or credentials) or accessing resources that should be protected. This could result in data breaches, unauthorized access, or your server being used in further attacks.