PT-2019-12670 · Webpagetest · Wpo Webpagetest

Griffin Francis

Published

2019-05-17

Updated

2019-05-21

CVE-2019-12161

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions WPO WebPageTest version 19.04

Description The issue allows for Server-Side Request Forgery (SSRF) due to the ValidateURL function in www/runtest.php not properly handling octal encoding of IP addresses. For example, an IP address like 192.168 can be represented in octal as 0300.0250, which is not correctly considered by the validation.

Recommendations For WPO WebPageTest version 19.04, consider modifying the ValidateURL function to correctly handle octal encoding of IP addresses to prevent SSRF attacks. As a temporary workaround, restrict access to the www/runtest.php script until a proper fix is implemented.

Fix

SSRF

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-918

Related Identifiers

CVE-2019-12161

Affected Products

Wpo Webpagetest

PT-2019-12670 · Webpagetest · Wpo Webpagetest

CVE-2019-12161

Weakness Enumeration

Related Identifiers

Affected Products

References · 3