{"uuid": "c9e5d506-c2aa-4afb-885d-69da57649b1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-8725", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mlzen4c7jy2l", "content": "\ud83d\udea9 MEDIUM severity SSRF in CoreWorxLab CAAL v1.0 \u2013 1.6.0. Exploit is public, no patch yet. Restrict outbound requests & use WAF rules until guidance is released. https://radar.offseq.com/threat/cve-2026-8725-server-side-request-forgery-in-corew-ac445f41 #OffSeq #SSRF #Vulnerability", "creation_timestamp": "2026-05-17T03:01:57.072559Z"}