CVE-2026-50888 | THREATINT

Description

An authenticated Server-Side Request Forgery (SSRF) in the custom scraper subsystem component of Benjamin Jonard Koillection v1.8.0 allows attackers to scan internal resources via supplying a crafted URL.

PUBLISHED Reserved 2026-06-07 | Published 2026-06-15 | Updated 2026-06-16 | Assigner mitre

References

gist.github.com/pyuysig/d60273c1c346257ceddbf8da7134bae7

cve.org (CVE-2026-50888)

nvd.nist.gov (CVE-2026-50888)

Download JSON