Blind SSRF - Sentry Misconfiguration

  1. Spider that website using Burp Suite and you’ll find an endpoint that uses sentry like : /api/14/store/?sentry_version=7&sentry_client=raven-js%2F3.27.0&sentry_key=<key>
  2. This endpoint has a request body which has the parameter called “filename” which is vulnerable to blind ssrf and will make blind GET request to your server
CallBack

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Jerry Shah (Jerry)

Jerry Shah (Jerry)

|Penetration Tester| |Hack The Box| |Digital Forensics| |Malware Analysis|