CVE-2004-2061

CRITICAL

Risearch - SSRF

Title source: rule

Description

RiSearch 1.0.01 and RiSearch Pro 3.2.06 allows remote attackers to use the show.pl script as an open proxy, or read arbitrary local files, by setting the url parameter to a (1) http://, (2) ftp://, or (3) file:// URL.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Phil Robinson · textremotecgi

https://www.exploit-db.com/exploits/24326

View Code ZIP pw:eip

exploitdb WRITEUP VERIFIED

by Phil Robinson · textremotecgi

https://www.exploit-db.com/exploits/24327

View Code ZIP pw:eip

References (7)

[Mailing List] http://marc.info/?l=bugtraq&m=109095196526490&w=2

[Broken Link, Vendor Advisory] http://secunia.com/advisories/12173

[Broken Link, Third Party Advisory, VDB Entry] http://securitytracker.com/id?1010788

[Broken Link] http://www.osvdb.org/8265

[Broken Link] http://www.osvdb.org/8266

[Broken Link, Exploit, Third Party Advisory, VDB Entry, Vendor Advisory] http://www.securityfocus.com/bid/10812

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/16817

Scores

CVSS v3 9.8

EPSS 0.1554

EPSS Percentile 94.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-918

Status published

Products (2)

risearch/risearch 1.0.01

risearch/risearch_pro 3.2.6

Published Jul 27, 2004

Tracked Since Feb 18, 2026