Login Sign Up

CVE-2024-48178

8.1 HIGH
SSRF

📋 TL;DR

CVE-2024-48178 is a Server-Side Request Forgery (SSRF) vulnerability in newbee-mall v1.0.0 that allows attackers to make the server send unauthorized requests to internal or external systems via the goodsCoverImg parameter. This affects all deployments running the vulnerable version of newbee-mall, potentially exposing internal network resources and services.

💻 Affected Systems

Products:
  • newbee-mall
Versions: v1.0.0
Operating Systems: All
Default Config Vulnerable: ⚠️ Yes
Notes: Any deployment using the vulnerable version with the goodsCoverImg parameter accessible is affected.

📦 What is this software?

Newbee Mall by Newbee Mall Project

View all CVEs affecting Newbee Mall →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers could access internal services, exfiltrate sensitive data, perform port scanning, or pivot to attack other internal systems from the compromised server.

🟠

Likely Case

Attackers scanning internal networks, accessing metadata services (like AWS/Azure instance metadata), or making requests to internal APIs to gather information.

🟢

If Mitigated

Limited to making requests only to allowed external domains with minimal data exposure.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

The GitHub issue shows exploitation details, making weaponization likely. SSRF vulnerabilities are commonly exploited with simple tools.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: https://github.com/dabaizhizhu/123/issues/10

Restart Required: No

Instructions:

No official patch available. Monitor the GitHub repository for updates or apply workarounds.

🔧 Temporary Workarounds

Input Validation and Whitelisting

all

Implement strict validation of the goodsCoverImg parameter to only allow expected URLs or domains.

Network Segmentation

all

Restrict outbound network access from the application server to only necessary external services.

🧯 If You Can't Patch

  • Implement a web application firewall (WAF) with SSRF protection rules to block malicious requests.
  • Monitor and log all outbound requests from the application server for suspicious patterns.

🔍 How to Verify

Check if Vulnerable:

Test by sending a request with goodsCoverImg parameter pointing to a controlled server (like Burp Collaborator) and check if the server makes the request.

Check Version:

Check the application version in the project configuration or deployment files.

Verify Fix Applied:

After applying workarounds, test that the goodsCoverImg parameter no longer allows requests to arbitrary URLs.

📡 Detection & Monitoring

Log Indicators:

  • Unusual outbound HTTP requests from the application server to internal IPs or unexpected domains
  • Requests with goodsCoverImg parameter containing unusual URLs

Network Indicators:

  • Outbound HTTP requests from the application server to internal network ranges or metadata services

SIEM Query:

source="application_logs" AND (goodsCoverImg CONTAINS "http://" OR goodsCoverImg CONTAINS "https://") AND goodsCoverImg NOT IN allowed_domains

📊 Metadata

CVE ID: CVE-2024-48178
CVSS v3 Score: 8.1 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
CWE: CWE-918
Published: October 28, 2024
Last Updated: June 10, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-48178, you might also want to check these:

CVE-2023-3432 10.0

This CVE describes a Server-Side Request Forgery (SSRF) vulnerability in PlantUML versions prior to ...

Same vulnerability type (CWE-918)
CVE-2025-2828 10.0

This Server-Side Request Forgery (SSRF) vulnerability in langchain-community's RequestsToolkit allow...

Same vulnerability type (CWE-918)
CVE-2023-43654 10.0

TorchServe versions 0.1.0 to 0.8.1 have a critical vulnerability where the default configuration lac...

Same vulnerability type (CWE-918)