{"uuid": "31513753-edc7-49d7-90cc-b52e19c34113", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-8725", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116587680874193200", "content": "\ud83d\udee1\ufe0f CVE-2026-8725: SSRF in CoreWorxLab CAAL v1.0 \u2013 1.6.0 (MEDIUM). Remote, unauthenticated attackers can trigger server requests. No patch; restrict outbound traffic & monitor logs. Exploit is public. https://radar.offseq.com/threat/cve-2026-8725-server-side-request-forgery-in-corew-ac445f41 #OffSeq #SSRF #Vuln #BlueTeam", "creation_timestamp": "2026-05-17T03:00:39.192750Z"}