CVE-2026-15330: Server-Side Request Forgery in zhayujie CowAgent
CVE-2026-15330 is a server-side request forgery (SSRF) vulnerability in zhayujie CowAgent versions 2.1.0 and 2.1.1. It affects the _build_image_content/_download_to_data_url functions in the Vision…
Read the full articleYou might also wanna read
Cisco Unified CM Vulnerability (CVE-2026-20230, CVSS 8.6) Actively Exploited for Root Privilege Escalation
CVE-2026-20230 has a CVSS score of 8.6 and stems from improper input validation for specific HTTP requests. Successful exploitation can let
Comprehensive Guide to SSRF Testing: From URL Parameters to Cloud Metadata Exploitation
The Ultimate SSRF Testing Bible: How Hackers Pivot from URL Parameters to Cloud Metadata in 2026 + Video - "Undercode Testing": Monitor hack
undercodetesting.com·26d ago
Preventing server-side request forgery in Node.js applications
This article will explore SSRF, its potential risks, and the strategies to mitigate SSRF in Node.js applications.

Workers - SSRF vulnerability in @opennextjs/cloudflare proactively mitigated for all Cloudflare customers
Mitigations have been put in place for all existing and future deployments of sites with the Cloudflare adapter for Open Next in response to

WAF - WAF Release - 2025-09-08
This week's update This week’s focus highlights newly disclosed vulnerabilities in web frameworks, enterprise applications, and widely deplo

WAF - WAF Release - 2025-09-29
This week highlights four important vendor- and component-specific issues: an authentication bypass in SimpleHelp (CVE-2024-57727), an infor

Comments
Sign in to join the conversation.
No comments yet. Be the first.