Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2025-32013 PoC — Server-Side Request Forgery via LNURL Authentication Callback in LNbits Lightning Network Payment System

Source
https://github.com/Mohith-T/CVE-2025-32013
Associated Vulnerability
Title:Server-Side Request Forgery via LNURL Authentication Callback in LNbits Lightning Network Payment System (CVE-2025-32013)
Description:LNbits is a Lightning wallet and accounts system. A Server-Side Request Forgery (SSRF) vulnerability has been discovered in LNbits' LNURL authentication handling functionality. When processing LNURL authentication requests, the application accepts a callback URL parameter and makes an HTTP request to that URL using the httpx library with redirect following enabled. The application doesn't properly validate the callback URL, allowing attackers to specify internal network addresses and access internal resources.
Description
Security Advisory and PoC for CVE-2025-32013
Readme
# CVE-2025-32013
Security Advisory and PoC for CVE-2025-32013
## How to Use

1. Start here: 
   Read this README file for an overview of the repository structure and contents.

2. Internal Security Advisory: 
   Open [01_Security_Advisory.md ](01_Security_Advisory.md) to see the detailed write-up addressing the vulnerability, its impact, and remediation plans.

3. PoC Explanation: 
   Open [02_Proof_of_Concept.md](02_Proof_of_Concept.md) to review the automation strategy for identifying and exploiting the vulnerability.

4. Diagram:
   The diagram below provides a quick visual summary of the data flow and path:
   [03_Communication_Flow_Diagram.jpg](03_Communication_Flow_Diagram.jpg)
File Snapshot

 [4.0K]  /data/pocs/7cdd97399f417e68f57f78277b2151d7e59ccb07
├── [9.7K]  01_Security_Advisory.md
├── [5.0K]  02_Proof_of_Concept.md
├── [112K]  03_Communication_Flow_Diagram.jpg
└── [ 693]  README.md

0 directories, 4 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →