CVE Catalog

CVE-2026-50888

HighCVSS 8.1
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.15%

4th percentile - higher than 4% of all known CVEs

Summary

In version 1.8.0 of the custom scraper component in Benjamin Jonard Koillection, there is an authenticated Server-Side Request Forgery (SSRF) vulnerability that allows attackers to scan internal resources by supplying a crafted URL.

Risk Assessment

This vulnerability could lead to the exposure of sensitive information about the organization's internal resources, increasing the risk of attacks on the infrastructure.

Recommendation

It is recommended to update to the latest version of the software and implement appropriate security measures to minimize the risk of exploitation of this vulnerability.

Original NVD description (English source)

An authenticated Server-Side Request Forgery (SSRF) in the custom scraper subsystem component of Benjamin Jonard Koillection v1.8.0 allows attackers to scan internal resources via supplying a crafted URL.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS