Skip to main content

Bagisto CVE-2026-6744

| EUVD-2026-24241 LOW
Server-Side Request Forgery (SSRF) (CWE-918)
2026-04-21 VulDB
SSRF Bagisto
2.1
CVSS 4.0 · NVD

Severity by source

NVD PRIMARY
2.1 LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
X

Lifecycle Timeline

8
Severity Changed
Apr 29, 2026 - 01:12 NVD
MEDIUM LOW
CVSS changed
Apr 29, 2026 - 01:12 NVD
5.3 (MEDIUM) 2.1 (LOW)
PoC Detected
Apr 29, 2026 - 01:00 vuln.today
Public exploit code
Analysis Generated
Apr 21, 2026 - 19:46 vuln.today
CVSS changed
Apr 21, 2026 - 19:22 NVD
6.3 (MEDIUM) 5.3 (MEDIUM)
EUVD ID Assigned
Apr 21, 2026 - 19:00 euvd
EUVD-2026-24241
Analysis Generated
Apr 21, 2026 - 19:00 vuln.today
CVE Published
Apr 21, 2026 - 18:00 nvd
LOW 2.1

DescriptionCVE.org

A vulnerability was found in Bagisto up to 2.3.15. Affected is the function copy of the component Downloadable Link Handler. The manipulation results in server-side request forgery. The attack may be launched remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure and explains: "We already replied on the github advisories. All the security issues are addressed through security advisory. We will fix this in our upcomming releases."

AnalysisAI

Server-side request forgery in Bagisto's Downloadable Link Handler component (versions up to 2.3.15) allows authenticated remote attackers to perform arbitrary HTTP requests on behalf of the server, potentially enabling access to internal resources, metadata services, or information disclosure. The vulnerability has publicly available exploit code and affects the copy function with low-to-moderate CVSS score (5.3) but concrete real-world impact if internal services are exposed. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts
Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Obtain valid Bagisto user account
Delivery
Authenticate to Bagisto application
Exploit
Craft SSRF payload targeting internal URL
Execution
Submit malicious request to Downloadable Link Handler copy endpoint
Persist
Server executes request to attacker-specified URL
Impact
Attacker receives internal service response or metadata
Sign in to reveal

Vulnerability AssessmentAI

Exploitation Exploitation requires valid Bagisto user authentication (PR:L in CVSS vector) - the attacker must possess a legitimate account or have compromised one. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment Risk assessment reveals a moderate-risk scenario with important caveats. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker with a valid Bagisto user account (e.g., a disgruntled employee or compromised customer account) uses the publicly available exploit code to craft a malicious request to the Downloadable Link Handler copy endpoint, specifying an internal URL such as http://169.254.169.254/latest/meta-data/ (AWS metadata service) or http://internal-api:8080/admin/config. The application processes this request on the server side, retrieves the response, and either returns sensitive data to the attacker or allows enumeration of internal services. …
Remediation Primary remediation is to upgrade Bagisto to the next patched release after version 2.3.15 once available from the vendor; monitor the official Bagisto repository and security advisories at https://github.com/bagisto for published fix versions. … Detailed patch versions, workarounds, and compensating controls in full report.
Sign in to read full assessment

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-6744 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy