{"description":"Trending threats, MITRE ATT\u0026CK coverage, and detection metadata. Fed continuously.","feed_url":"https://feed.craftedsignal.io/tags/cve-2026-10287/feed.json","home_page_url":"https://feed.craftedsignal.io/","items":[{"_cs_actors":[],"_cs_cpes":[],"_cs_cves":[{"cvss":7.3,"id":"CVE-2026-10287"}],"_cs_exploited":false,"_cs_has_poc":false,"_cs_poc_references":[],"_cs_products":["SEO Meta Tag Extractor 1.0"],"_cs_severities":["medium"],"_cs_tags":["cve","cve-2026-10287","ssrf","server-side request forgery"],"_cs_type":"advisory","_cs_vendors":["SourceCodester"],"content_html":"\u003cp\u003eSourceCodester SEO Meta Tag Extractor 1.0 is susceptible to a server-side request forgery (SSRF) vulnerability identified as CVE-2026-10287. The flaw resides within the \u003ccode\u003eget_headers\u003c/code\u003e function of the \u003ccode\u003e/index.php\u003c/code\u003e file. An attacker can remotely trigger this vulnerability by manipulating the \u003ccode\u003eurl\u003c/code\u003e argument, forcing the application to make HTTP requests to arbitrary destinations. This could be abused to scan internal networks, read sensitive information from internal services, or potentially proxy attacks to other systems. The vulnerability has been publicly disclosed, making it more likely to be exploited.\u003c/p\u003e\n\u003ch2 id=\"attack-chain\"\u003eAttack Chain\u003c/h2\u003e\n\u003col\u003e\n\u003cli\u003eAttacker identifies the vulnerable application, SourceCodester SEO Meta Tag Extractor 1.0, running online.\u003c/li\u003e\n\u003cli\u003eAttacker crafts a malicious URL containing the target internal or external address, embedding it within the \u003ccode\u003eurl\u003c/code\u003e parameter of a request to \u003ccode\u003e/index.php\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eThe attacker sends a request to \u003ccode\u003e/index.php\u003c/code\u003e with the manipulated \u003ccode\u003eurl\u003c/code\u003e parameter, targeting the \u003ccode\u003eget_headers\u003c/code\u003e function.\u003c/li\u003e\n\u003cli\u003eThe application\u0026rsquo;s \u003ccode\u003eget_headers\u003c/code\u003e function processes the attacker-controlled URL without proper validation.\u003c/li\u003e\n\u003cli\u003eThe application initiates an HTTP request to the attacker-specified internal or external server.\u003c/li\u003e\n\u003cli\u003eThe application receives the HTTP response from the targeted server.\u003c/li\u003e\n\u003cli\u003eThe application may then display or use the received information.\u003c/li\u003e\n\u003cli\u003eIf successful, the attacker can leverage this SSRF vulnerability to potentially gain unauthorized access to internal resources or proxy requests.\u003c/li\u003e\n\u003c/ol\u003e\n\u003ch2 id=\"impact\"\u003eImpact\u003c/h2\u003e\n\u003cp\u003eSuccessful exploitation of this SSRF vulnerability (CVE-2026-10287) can lead to the disclosure of sensitive internal information, such as internal service configurations or data, by forcing the application to make requests to internal resources. It can also be leveraged to perform port scanning on the internal network or even to proxy attacks to other systems. The CVSS v3.1 score of 7.3 indicates a high severity vulnerability with potential for information disclosure and limited impact to integrity and availability.\u003c/p\u003e\n\u003ch2 id=\"recommendation\"\u003eRecommendation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eApply available patches or updates provided by SourceCodester for SEO Meta Tag Extractor 1.0 to address CVE-2026-10287.\u003c/li\u003e\n\u003cli\u003eImplement input validation and sanitization on the \u003ccode\u003eurl\u003c/code\u003e parameter in the \u003ccode\u003eget_headers\u003c/code\u003e function within \u003ccode\u003e/index.php\u003c/code\u003e to prevent arbitrary URL usage, mitigating CVE-2026-10287.\u003c/li\u003e\n\u003cli\u003eDeploy the Sigma rule \u003ccode\u003eDetect SSRF in SourceCodester SEO Meta Tag Extractor via URL Parameter\u003c/code\u003e to identify potential exploitation attempts in web server logs.\u003c/li\u003e\n\u003cli\u003eMonitor web server logs for requests to \u003ccode\u003e/index.php\u003c/code\u003e containing suspicious URLs or internal IP addresses in the \u003ccode\u003eurl\u003c/code\u003e parameter.\u003c/li\u003e\n\u003cli\u003eConsider implementing network segmentation to limit the impact of a successful SSRF attack, restricting the application\u0026rsquo;s ability to access internal resources.\u003c/li\u003e\n\u003c/ul\u003e\n","date_modified":"2026-06-01T21:16:47Z","date_published":"2026-06-01T21:16:47Z","id":"https://feed.craftedsignal.io/briefs/2026-06-cve-2026-10287-ssrf/","summary":"SourceCodester SEO Meta Tag Extractor 1.0 is vulnerable to server-side request forgery (SSRF) via manipulation of the 'url' argument in the get_headers function of the /index.php file, potentially allowing a remote attacker to make requests to internal or external systems.","title":"SourceCodester SEO Meta Tag Extractor 1.0 - Server-Side Request Forgery (SSRF) - CVE-2026-10287","url":"https://feed.craftedsignal.io/briefs/2026-06-cve-2026-10287-ssrf/"}],"language":"en","title":"CraftedSignal Threat Feed — Cve-2026-10287","version":"https://jsonfeed.org/version/1.1"}