CVE-2026-2377

Name of the Vulnerable Software and Affected Versions mirror-registry (affected versions not specified)

Description An issue exists in mirror-registry where authenticated users can exploit the log export feature by providing a specially crafted web address (URL). This allows the application's backend to make arbitrary requests to internal network resources, known as Server-Side Request Forgery (SSRF). This could lead to unauthorized access to sensitive information or other internal systems.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.