CVE-2023-46746

Published: Dec 1, 2023Modified: Nov 21, 2024

4.3

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Exploitability: 2.8 / Impact: 1.4

Source: NVD

Description

PostHog provides open-source product analytics, session recording, feature flagging and A/B testing that you can self-host. A server-side request forgery (SSRF), which can only be exploited by authenticated users, was found in Posthog. Posthog did not verify whether a URL was local when enabling webhooks, allowing authenticated users to forge a POST request. This vulnerability has been addressed in `22bd5942` and will be included in subsequent releases. There are no known workarounds for this vulnerability.

Affected (1)

Products: Posthog: Posthog

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Posthog Posthog	Up to 1.43.1

Related CWEs

Server-Side Request Forgery (SSRF)

The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.

References (6)

https://github.com/PostHog/posthog/commit/22bd5942638d5d9bc4bd603a9bfe8f8a95572292

Source: security-advisories@github.com

Patch

https://github.com/PostHog/posthog/security/advisories/GHSA-wqqw-r8c5-j67c

Source: security-advisories@github.com

Vendor Advisory

https://securitylab.github.com/advisories/GHSL-2023-185_posthog_posthog/

Source: security-advisories@github.com

https://github.com/PostHog/posthog/commit/22bd5942638d5d9bc4bd603a9bfe8f8a95572292

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://github.com/PostHog/posthog/security/advisories/GHSA-wqqw-r8c5-j67c

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://securitylab.github.com/advisories/GHSL-2023-185_posthog_posthog/

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.