CVE-2026-40584

Name of the Vulnerable Software and Affected Versions RansomLook versions prior to 1.9.0

Description RansomLook is a tool used to monitor ransomware groups and markets to extract victim data. The API improperly filters private location entries within 'website/web/api/genericapi.py'. Due to the code removing elements from a list during iteration, entries marked as private may be unintentionally included in API responses, leading to the unauthorized disclosure of non-public location information.

Recommendations Update to version 1.9.0.