CVE-2025-32013

HIGH

lnbits < 0.12.12 - Server-Side Request Forgery via LNURL Callback URL

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-32013. PoCs published by Mohith-T.

AI-analyzed exploit summary This repository contains a README file describing the structure of a security advisory and PoC for CVE-2025-32013, but no actual exploit code or technical details are provided. It references additional files that are not included in the provided snippet.

Description

LNbits is a Lightning wallet and accounts system. A Server-Side Request Forgery (SSRF) vulnerability has been discovered in LNbits' LNURL authentication handling functionality. When processing LNURL authentication requests, the application accepts a callback URL parameter and makes an HTTP request to that URL using the httpx library with redirect following enabled. The application doesn't properly validate the callback URL, allowing attackers to specify internal network addresses and access internal resources.

Exploits (1)

nomisec WRITEUP
by Mohith-T · poc
https://github.com/Mohith-T/CVE-2025-32013

This repository contains a README file describing the structure of a security advisory and PoC for CVE-2025-32013, but no actual exploit code or technical details are provided. It references additional files that are not included in the provided snippet.

Classification
Writeup 90%
Attack Type
Other
Complexity
Trivial
Reliability
Theoretical
Target: unspecified
No auth needed
Prerequisites: access to additional files referenced in the README
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Scores

CVSS v3 7.5
EPSS 0.0009
EPSS Percentile 25.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact total

Details

CWE
CWE-918
Status published
Products (2)
lnbits/lnbits < 0.12.12
pypi/lnbits 0PyPI
Published Apr 06, 2025
Tracked Since Feb 18, 2026