Seafraf

**Name of the Vulnerable Software and Affected Versions** Coral Server versions prior to 1.1.0 **Description** Coral Server is an open collaboration infrastructure designed for communication, coordination, trust, and payments within The Internet of Agents. Before version 1.1.0, the Server Side Events (SSE) endpoint, specifically `/sse/v1/...`, lacked robust validation to ensure connecting agents were authorized session participants. This could potentially allow for unauthorized message injection or observation. **Recommendations** Update to version 1.1.0 or later.