CVE-2019-7652

HIGH

TheHive Project UnshortenLink analyzer <1.1 - SSRF

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-7652. PoCs published by Alexandre Basquin.

AI-analyzed exploit summary This is a writeup describing an SSRF vulnerability in Cortex Unshortenlink Analyzer versions prior to 1.1. The exploit involves creating a new analysis with a malicious URL to trigger an SSRF, allowing interaction with internal services.

Description

TheHive Project UnshortenLink analyzer before 1.1, included in Cortex-Analyzers before 1.15.2, has SSRF. To exploit the vulnerability, an attacker must create a new analysis, select URL for Data Type, and provide an SSRF payload like "http://127.0.0.1:22" in the Data parameter. The result can be seen in the main dashboard. Thus, it is possible to do port scans on localhost and intranet hosts.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Alexandre Basquin · textwebappsmultiple
https://www.exploit-db.com/exploits/46820

This is a writeup describing an SSRF vulnerability in Cortex Unshortenlink Analyzer versions prior to 1.1. The exploit involves creating a new analysis with a malicious URL to trigger an SSRF, allowing interaction with internal services.

Classification
Writeup 90%
Attack Type
Ssrf
Complexity
Trivial
Reliability
Reliable
Target: Cortex UnshortenLink Analyzer < 1.1
Auth required
Prerequisites: Access to Cortex interface · Ability to create a new analysis
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Scores

CVSS v3 7.7
EPSS 0.0515
EPSS Percentile 91.4%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

Details

CWE
CWE-918
Status published
Products (1)
thehive-project/cortex-analyzers < 1.15.2
Published May 09, 2019
Tracked Since Feb 18, 2026