CVE-2020-24815

MEDIUM

MicroStrategy 10.4/2019/2020 - Authenticated PDF Export Server-Side Request Forgery

Title source: manual
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-24815. PoCs published by darkvirus-7x.

AI-analyzed exploit summary This exploit leverages CVE-2020-24815, an SSRF vulnerability in the 'stocker' application, to read arbitrary files by injecting a file:// URI into an order's title field. The script automates the process of creating an order, retrieving the generated PDF, and extracting its text content.

Description

A Server-Side Request Forgery (SSRF) affecting the PDF generation in MicroStrategy 10.4, 2019 before Update 6, and 2020 before Update 2 allows authenticated users to access the content of internal network resources or leak files from the local system via HTML containers embedded in a dossier/dashboard document. NOTE: 10.4., no fix will be released as version will reach end-of-life on 31/12/2020.

Exploits (1)

nomisec WORKING POC 1 stars
by darkvirus-7x · poc
https://github.com/darkvirus-7x/exploit-CVE-2020-24815

This exploit leverages CVE-2020-24815, an SSRF vulnerability in the 'stocker' application, to read arbitrary files by injecting a file:// URI into an order's title field. The script automates the process of creating an order, retrieving the generated PDF, and extracting its text content.

Classification
Working Poc 90%
Attack Type
Ssrf
Complexity
Moderate
Reliability
Reliable
Target: stocker (version not specified)
Auth required
Prerequisites: Valid session cookie · Access to the target application · pdftotext and curl installed
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

Scores

CVSS v3 6.5
EPSS 0.0184
EPSS Percentile 76.4%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-918
Status published
Products (3)
microstrategy/microstrategy 10.4
microstrategy/microstrategy 2019 update1 (5 CPE variants)
microstrategy/microstrategy 2020 update1
Published Nov 24, 2020
Tracked Since Feb 18, 2026