CVE-2025-45250

This repository contains a proof-of-concept for CVE-2025-45250, an SSRF vulnerability in MrDoc <=0.95. The exploit demonstrates how an attacker can trick the server into making malicious requests by sending a crafted POST request to the /upload_doc_img/ endpoint with a manipulated URL parameter.

This PoC demonstrates a Server-Side Request Forgery (SSRF) vulnerability in MrDoc <=0.95. The exploit involves sending a crafted POST request to the `/upload_doc_img/` endpoint with a malicious URL, allowing an attacker to trick the server into making requests to internal or external systems.