Description

A Blind Server-Side Request Forgery (SSRF) vulnerability in evershop 2.1.0 and prior allows unauthenticated attackers to force the server to initiate an HTTP request via the "GET /images" API. The vulnerability occurs due to insufficient validation of the "src" query parameter, which permits arbitrary HTTP or HTTPS URIs, resulting in unexpected requests against internal and external networks.

Related CPE's

a

evershop

evershop

*

*

*

*

*

node.js

Vulnerable

References

https://github.com/dos-m0nk3y/CVE/tree/main/CVE-2025-67427

Third Party Advisory

https://github.com/evershopcommerce/evershop

Product

Weaknesses

134c704f-9b21-4f2e-91b3-4a467353bcc0

Secondary
CWE-918

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

6.5 · Medium

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2026-01-05T20:16:03.350Z

1 week ago

Last modified

2026-01-12T18:12:22.640Z

6 hours ago