Description
PraisonAI before 4.6.78 contains an unauthenticated server-side request forgery vulnerability in the Jobs API /api/v1/runs endpoint. The webhook_url parameter is validated at request time but re-resolved at connection time, allowing attackers to use DNS rebinding to reach internal services with a blind SSRF attack.
Problem types
Server-Side Request Forgery (SSRF)
Product status
Any version before 4.6.78
4.6.78 (semver)
Credits
dinhvaren
References
github.com/...isonAI/security/advisories/GHSA-4w49-gwv8-fpjg (GitHub Security Advisory (GHSA-4w49-gwv8-fpjg))
www.vulncheck.com/...re-unauthenticated-ssrf-via-webhook-url (VulnCheck Advisory: PraisonAI before 4.6.78 Unauthenticated SSRF via webhook_url)