CVEs-PoC/2021/CVE-2021-25939.md

### [CVE-2021-25939](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25939)
![](https://img.shields.io/static/v1?label=Product&message=arangodb&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3E%3D%20v3.7.0%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-918%20Server-Side%20Request%20Forgery%20(SSRF)&color=brighgreen)

### Description

In ArangoDB, versions v3.7.0 through v3.9.0-alpha.1 have a feature which allows downloading a Foxx service from a publicly available URL. This feature does not enforce proper filtering of requests performed internally, which can be abused by a highly-privileged attacker to perform blind SSRF and send internal requests to localhost.

### POC

#### Reference
- https://www.whitesourcesoftware.com/vulnerability-database/CVE-2021-25939

#### Github
- https://github.com/jonathanscheibel/PyNmap