CVE-2025-6762
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-06-27

Last updated on: 2026-04-29

Assigner: VulDB

Description
A vulnerability classified as critical has been found in diyhi bbs up to 6.8. This affects the function getUrl of the file /admin/login of the component HTTP Header Handler. The manipulation of the argument Host leads to server-side request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-06-27
Last Modified
2026-04-29
Generated
2026-05-07
AI Q&A
2025-06-27
EPSS Evaluated
2026-05-05
NVD
CVE-2025-6762
EUVD
EUVD-2025-19325
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
diyhi bbs to 6.8 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-918 The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

CVE-2025-6762 is a critical Server-Side Request Forgery (SSRF) vulnerability in diyhi bbs versions up to 6.8. It occurs in the getUrl function of the /admin/login endpoint, where the application constructs a URL using the Host HTTP header without proper validation. An attacker can manipulate this Host header to make the server send unauthorized HTTP requests to arbitrary or attacker-controlled destinations, potentially abusing internal or external network resources. [1, 2]


How can this vulnerability impact me? :

This vulnerability can impact you by allowing an attacker to make the affected server perform unauthorized requests to internal or external systems, potentially exposing sensitive information, compromising system integrity, or causing denial of service. It affects confidentiality, integrity, and availability of the system. Since the attack can be performed remotely and easily, it poses a significant security risk. [2]


How can this vulnerability be detected on my network or system? Can you suggest some commands?

Detection of this SSRF vulnerability can involve monitoring HTTP requests to the /admin/login endpoint for unusual or manipulated Host headers. Since the vulnerability arises from the Host header manipulation, inspecting logs for unexpected Host header values or outbound requests triggered by these headers can help. Specific commands might include using tools like curl to test the endpoint with crafted Host headers, for example: curl -v -H "Host: attacker.com" https://target/admin/login. Additionally, network monitoring tools can be used to detect unexpected outbound HTTP requests originating from the server. However, no specific detection commands are provided in the available resources. [1, 2]


What immediate steps should I take to mitigate this vulnerability?

As of the disclosure date, no known mitigations or patches are available for this vulnerability. Immediate steps include considering replacing the affected diyhi bbs product with an alternative, restricting outbound HTTP requests from the server to prevent exploitation, and monitoring for suspicious activity related to the /admin/login endpoint. Applying network-level controls such as firewall rules to limit server outbound connections and closely monitoring logs for exploitation attempts are recommended interim measures. [2]


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart