{"uuid": "27755612-0783-4a5f-95fc-cdeb3628f76a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-36757", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mkqhooaejg2k", "content": "CVE-2026-36757 - Halo SSRF\nCVE ID : CVE-2026-36757\n \n Published : April 30, 2026, 5:16 p.m. | 1\u00a0hour, 12\u00a0minutes ago\n \n Description : A Server-Side Request Forgery (SSRF) in the /plugins/{name}/upgrade-from-uri endpoint of halo v2.22.14 allows authenticated attackers to scan i...", "creation_timestamp": "2026-04-30T20:35:56.520466Z"}