CVE-2026-35037

Exploit

EPSS 0.29%
Veröffentlicht 06.04.2026 16:56:54
Zuletzt bearbeitet 22.04.2026 18:59:55
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

Ech0 affected by unauthenticated SSRF in GetWebsiteTitle allows access to internal services and cloud metadata

Ech0 is an open-source, self-hosted publishing platform for personal idea sharing. Prior to 4.2.8, the GET /api/website/title endpoint accepts an arbitrary URL via the website_url query parameter and makes a server-side HTTP request to it without any validation of the target host or IP address. The endpoint requires no authentication. An attacker can use this to reach internal network services, cloud metadata endpoints (169.254.169.254), and localhost-bound services, with partial response data exfiltrated via the HTML <title> tag extraction This vulnerability is fixed in 4.2.8.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

NVD 1 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Ech0 ≫ Ech0 Version < 4.2.8

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.29%	0.203

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security-advisories@github.com	7.2	3.9	2.7	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

CWE-918 Server-Side Request Forgery (SSRF)

The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.

https://github.com/lin-snow/Ech0/security/advisories/GHSA-cqgf-f4x7-g6wc

Vendor Advisory

Exploit

Mitigation

https://nvd.nist.gov/vuln/detail/CVE-2026-35037

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-35037

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-35037

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-35037