AIKIDO-2026-10048
craftcms/cms is vulnerable to Server-Side Request Forgery (SSRF)
75
High Risk
This Affects:
craftcms/cmsTL;DR
Affected versions of this package are vulnerable to server-side request forgery (SSRF) because the GraphQL asset upload resolver made unvalidated HTTP requests to user-controlled URLs, allowing an attacker to force the server to fetch arbitrary external resources. In the referenced commit, the implementation was hardened by disabling automatic redirects and tightening how the HTTP client is constructed for asset fetches, preventing attackers from leveraging open redirects or crafted URLs to coerce the server into contacting internal or arbitrary endpoints.
Who does this affect?
You are affected if you are using a version that falls within the vulnerable range.
Background info
craftcms/cms is vulnerable to Server-Side Request Forgery (SSRF) in versions 1.0.0 - 4.16.17 and 5.0.0 - 5.8.21.
How to fix this
Upgrade the craftcms/cms library to the patch version.
Get Secure Now
Secure your code, cloud, and runtime environments in one central system. Find and fix vulnerabilities automatically.
No credit card required | Scan results in 32secs.
SOC 2Compliant
ISO 27001Compliant