g03m0n
Posts Categories Tags
g03m0n

Contents

SSRF in Koha version ≤ 25.11 (CVE-2026-26379)

g03m0n  included in CVEs
   112 words   One minute 

SSRF in Koha version ≤ 25.11 (CVE-2026-26379)

Description and Impact

Type Affected Version ?-day
SSRF ≤25.11 (latest) 0-day

Steps to Reproduce

First, from the Dashboard interface, go to Koha AdministrationZ39.50/SRU servers:

/images/CVE-2026-26379-0.png

Select + New Z39.50 server

/images/CVE-2026-26379-1.png

Assume the internal network is hosting an application on port 8888: nc -nvlp 8888

/images/CVE-2026-26379-2.png

Fill in the information as follows:

/images/CVE-2026-26379-3.png

Save.

Go to http://192.168.116.130:8080/cgi-bin/koha/cataloguing/z3950_search.pl and fill in the information as shown in the image:

/images/CVE-2026-26379-4.png

Click Search.

A request is sent to the server:

/images/CVE-2026-26379-5.png

  • If the response is Connection timeout, it means there is an internal service with port 8888 open:

/images/CVE-2026-26379-6.png

  • If there is no service listening on port 8888, the response is Connection failed:

/images/CVE-2026-26379-7.png

Updated on 2025-12-31
 CveKoha
Back | Home