Craft CMS (GraphQL Asset Upload), Server-Side Request Forgery (SSRF), CVE-2025-68437 (Medium)

By /

Listen to this Post

How CVE-2025-68437 Works

The vulnerability exists in the GraphQL `save__Asset` mutation within Craft CMS. The application is intended to fetch and save assets from user-provided URLs, but it fails to restrict the URL scheme, allowing the use of protocols beyond `http` and https.
1. Prerequisites for Exploitation: The attacker must have a GraphQL schema that grants two specific permissions for the target volume: `”Edit assets in the volume”` and "Create assets in the volume". These permissions are often granted to authenticated users or, in some misconfigurations, could be exposed via a public schema.
2. The Core Flaw: The `_file` input of the mutation takes a `url` parameter that is used to fetch content. The application lacks a whitelist for allowed URL schemes and does not perform sufficient validation on the supplied hostname.
3. Bypassing Filters with Obfuscation: To circumvent any string-based filters (e.g., a blocklist for 127.0.0.1), an attacker can use mathematical IP obfuscation. The decimal representation `2130706433` is equivalent to the loopback address 127.0.0.1. This technique, often called a DWORD bypass, allows an attacker to target internal services without triggering a filter looking for the literal string 127.0.0.1.
4. Leveraging the Gopher Protocol: The lack of scheme restriction allows the attacker to use the `gopher://` protocol, which can wrap raw TCP commands. This is powerful because it allows interaction with non-HTTP services.
5. Impactful Attack Vector: By combining the DWORD bypass with the `gopher://` protocol, an attacker can construct a payload to target a local Redis instance. For example:

gopher://2130706433:6379/_FLUSHALL

This payload uses the obfuscated IP address to point to `127.0.0.1` and instructs the server to execute the `FLUSHALL` command on the local Redis database, which would delete all keys. This demonstrates how an SSRF vulnerability can lead to a high-impact Denial of Service (DoS) on internal services.

DailyCVE Form

Platform: Craft CMS
Version: 4.0.0-RC1 to 4.16.16, 5.0.0-RC1 to 5.8.20
Vulnerability: Server-Side Request Forgery (SSRF)
Severity: Medium (CVSS 5.0)
Date: 2026-01-05
Prediction: Patch expected in versions 4.16.17 and 5.8.21, released on 2026-01-05

What Undercode Say: Analytics

The following `curl` command can be used to test a vulnerable endpoint by attempting to fetch a local file. A successful response indicates the server is vulnerable.

curl -X POST -H "Content-Type: application/json" \
-d '{"query":"mutation { save_<VolumeName>_Asset(_file: { url: \"gopher://2130706433:6379/_FLUSHALL\", filename: \"poc.txt\" }) { id } }"}' \
http://<craft-instance>/admin/graphiql

Analytics Insight: The use of `gopher://` on port 6379 (Redis) is a clear signature of a sophisticated SSRF attack. Security teams should monitor outbound requests for non-standard protocols (gopher, dict, etc.) from web servers and unexpected traffic to internal ports (e.g., 6379, 3306, 25).

Exploit

An attacker with the required GraphQL permissions can execute the following steps:
1. Reconnaissance: Enumerate internal network by attempting to fetch URLs with internal IP addresses (e.g., http://10.0.0.1/admin`). The server's response or error messages can reveal the existence and type of internal services.
2. Cloud Metadata Theft: Target cloud provider metadata endpoints (e.g.,http://169.254.169.254/latest/meta-data/iam/security-credentials/`) to steal IAM credentials.
3. Internal Service Manipulation: Use the `gopher` protocol to interact with TCP-based services like Redis, MySQL, or Memcached. For example, an attacker could use a `gopher` payload to set a malicious key in Redis that leads to further compromise.

Protection from this CVE

  1. Immediate Patch: Upgrade Craft CMS to version 4.16.17 or 5.8.21, which contain the official fix.
  2. GraphQL Permissions Review: Audit all GraphQL schemas to ensure that write permissions ("Edit assets in the volume", "Create assets in the volume") are not granted to untrusted users or public schemas. Apply the principle of least privilege.
  3. Network-Level Defense: Implement a network firewall or web application firewall (WAF) rule to block outbound requests from the web server to internal IP ranges and non-standard protocols (e.g., gopher://, dict://).
  4. Input Validation: For custom applications, ensure that any user-supplied URL is validated against a strict whitelist of allowed schemes (only `https` and http) and that the hostname is normalized (e.g., converting `2130706433` to its dotted-decimal form) before any blocklist checks are performed.

Impact

Data Breach: Successful exploitation allows an attacker to access sensitive data within the local network, including configuration files and database contents. In cloud environments, it can lead to the theft of IAM credentials, resulting in a full compromise of the cloud infrastructure.
Internal Network Reconnaissance: The vulnerability can be used to scan internal networks, map out live services, and identify other vulnerable systems behind the firewall.
Denial of Service: As shown in the example, an attacker could issue a `FLUSHALL` command to a local Redis server, causing data loss and service disruption. Similarly, they could target other internal services to cause instability.
Compliance Violations: Exploitation leading to data exfiltration or system compromise can result in significant regulatory fines (GDPR, HIPAA, PCI-DSS) and reputational damage.

🎯Let’s Practice Exploiting & Learn Patching For Free:

Sources:

Reported By: github.com
Extra Source Hub:
Undercode

🔐JOIN OUR CYBER WORLD [ CVE News • HackMonitor • UndercodeNews ]

💬 Whatsapp | 💬 Telegram

📢 Follow DailyCVE & Stay Tuned:

𝕏 formerly Twitter 🐦 | @ Threads | 🔗 Linkedin Featured Image

Scroll to Top