CVE-2025-44043 – Keyoti SearchUnit SSRF

June 10, 2025

CVE ID : CVE-2025-44043

Published : June 10, 2025, 4:15 p.m. | 34 minutes ago

Description : Keyoti SearchUnit prior to 9.0.0. is vulnerable to Server-Side Request Forgery (SSRF) in /Keyoti_SearchEngine_Web_Common/SearchService.svc/GetResults and /Keyoti_SearchEngine_Web_Common/SearchService.svc/GetLocationAndContentCategories. An attacker can specify their own SMB server as the indexDirectory value when making POST requests to the affected components. In doing so an attacker can get the SearchUnit server to read and write configuration and log files from/to the attackers server.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-47110 – Adobe Commerce Stored Cross-Site Scripting (XSS) Vulnerability

Next Article CVE-2025-43586 – Adobe Commerce Privilege Escalation Vulnerability

How To Prevent WordPress SQL Injection Attacks

This week in AI dev tools: Apple’s Foundations Model framework, Mistral’s first reasoning model, and more (June 13, 2025)

Open Talent platforms emerging to match skilled workers to needs, study finds

Java never goes out of style: Celebrating 30 years of the language

OneDrive for Mac will soon give you more flexible storage options

From The Editor’s Desk — new Windows Central community features, we’d like to hear from you!

New code strings attached to Xbox Game Pass suggests a price increase may be imminent

This could be the versatile laptop accessory I’ve been waiting for — Here’s why it stands out from other portable monitors

Worker Threads in Node.js: A Complete Guide for Multithreading in JavaScript

Worker Threads in Node.js: A Complete Guide for Multithreading in JavaScript

Everybody’s gone lintin’

QAQ-QQ-AI-QUEST

OneDrive for Mac will soon give you more flexible storage options

OneDrive for Mac will soon give you more flexible storage options

From The Editor’s Desk — new Windows Central community features, we’d like to hear from you!

New code strings attached to Xbox Game Pass suggests a price increase may be imminent

CVE-2025-44043 – Keyoti SearchUnit SSRF

3DMark Arrives Natively on macOS: Unleash & Benchmark Your Apple Silicon Performance

Siri 2.0 Delayed? Next-Gen AI Assistant Not Expected Until iOS 26.4 in Spring 2026

DolphinGemma: How Google AI is helping decode dolphin communication

Are you watching A Minecraft Movie in theaters, and if so, what do you think of it? — Weekend discussion 💬

Exploits and vulnerabilities in Q1 2025

The AI for Science Forum: A new era of discovery

Bernhard Schölkopf: Is AI intelligent? | Starmus highlights

I tested a robot mower with no boundary wire – here’s my buying advice after a month

Universal Design in Pharmacies: Key WCAG Principle – Robust

CVE-2025-3200: Wiesemann & Theis Com-Server Devices Exposed by Deprecated TLS Protocols

CVE-2025-44043 – Keyoti SearchUnit SSRF

Related Posts