Kuno CMS Vulnerable to Server-Side Request Forgery (SSRF) via Unsafe...

5.1 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:N/VA:L/SC:L/SI:N/SA:N

Description

KUNO CMS is a fully deployable full-stack blog application. In versions prior to 1.3.15, an SSRF (Server-Side Request Forgery) vulnerability exists in the Media module of the Kuno CMS administrative panel. A logged-in administrator can upload a specially crafted SVG file containing an external image reference, causing the server to initiate an outgoing connection to an arbitrary external URL. This can lead to information disclosure or internal network probing. Version 1.3.15 contains a fix for the issue.

Basic Information

ID CVE-2025-61768

Source GitHub_M

Published Oct 6, 2025 at 21:54

Affected Product

Vendor xuemian168

Product kuno

Version < 1.3.15

Affected Versions xuemian168 kuno < 1.3.15

CWE Classification

CWE-20 CWE-434 CWE-918

References

{
    "lastseen": "",
    "description": "KUNO CMS is a fully deployable full-stack blog application. In versions prior to 1.3.15, an SSRF (Server-Side Request Forgery) vulnerability exists in the Media module of the Kuno CMS administrative panel. A logged-in administrator can upload a specially crafted SVG file containing an external image reference, causing the server to initiate an outgoing connection to an arbitrary external URL. This can lead to information disclosure or internal network probing. Version 1.3.15 contains a fix for the issue.",
    "published": "2025-10-06T21:54:50.656Z",
    "modified": "2025-10-06T21:54:50.656Z",
    "type": "cve",
    "title": "Kuno CMS Vulnerable to Server-Side Request Forgery (SSRF) via Unsafe SVG Upload",
    "source": "GitHub_M",
    "references": "https://github.com/xuemian168/kuno/security/advisories/GHSA-4f5f-2c49-5mwm\nhttps://github.com/xuemian168/kuno/commit/804b2909c65b16ae2063d0f992e0711aa09475e2\nhttps://github.com/xuemian168/kuno/releases/tag/v1.3.15",
    "id": "CVE-2025-61768",
    "bulletinFamily": "",
    "cwe": [
        "CWE-20",
        "CWE-434",
        "CWE-918"
    ],
    "cvelist": null,
    "sourceData": "xuemian168 kuno < 1.3.15",
    "sourceHref": "",
    "cvss": {
        "score": 5.1,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:N/VA:L/SC:L/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "kuno",
    "version": "< 1.3.15",
    "vendor": "xuemian168",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Kuno CMS Vulnerable to Server-Side Request Forgery (SSRF) via Unsafe SVG Upload_CVE-2025-61768