CVE-2025-32013

HIGH

Lnbits < 0.12.12 - SSRF

Title source: rule

Description

LNbits is a Lightning wallet and accounts system. A Server-Side Request Forgery (SSRF) vulnerability has been discovered in LNbits' LNURL authentication handling functionality. When processing LNURL authentication requests, the application accepts a callback URL parameter and makes an HTTP request to that URL using the httpx library with redirect following enabled. The application doesn't properly validate the callback URL, allowing attackers to specify internal network addresses and access internal resources.

Exploits (1)

nomisec WRITEUP

by Mohith-T · poc

https://github.com/Mohith-T/CVE-2025-32013

View Code ZIP pw:eip

References (1)

[Exploit] https://github.com/lnbits/lnbits/security/advisories/GHSA-qp8j-p87f-c8cc

Scores

CVSS v3 7.5

EPSS 0.0007

EPSS Percentile 20.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE

CWE-918

Status published

Products (2)

lnbits/lnbits < 0.12.12

pypi/lnbits 0PyPI

Published Apr 06, 2025

Tracked Since Feb 18, 2026