PT-2026-20682 · Unknown · Alobaidi Extend Link
Theviper
·
Published
2026-02-19
·
Updated
2026-02-19
·
CVE-2026-25310
CVSS v3.1
4.9
Medium
| Vector | AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Alobaidi Extend Link versions through 2.0.0
Description
An issue exists in Alobaidi Extend Link that allows Server-Side Request Forgery (SSRF). This allows an attacker to potentially make requests on behalf of the server, potentially accessing internal resources or performing actions with elevated privileges. The vulnerability is present due to insufficient validation of user-supplied data.
Recommendations
Update Alobaidi Extend Link to a version newer than 2.0.0.
Fix
SSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alobaidi Extend Link