https://vulnerability.circl.lu/sightings/feed 2026-05-10T19:04:36.707041+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/1431d5a3-8996-4fbf-a03e-50c8025053b5/export 2026-05-10T19:04:37.090910+00:00 Automation user http://cve.circl.lu/user/automation {"uuid": "1431d5a3-8996-4fbf-a03e-50c8025053b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25876", "type": "seen", "source": "https://t.me/cibsecurity/45523", "content": "\u203c CVE-2022-25876 \u203c\n\nThe package link-preview-js before 2.1.16 are vulnerable to Server-side Request Forgery (SSRF) which allows attackers to send arbitrary requests to the local network and read the response. This is due to flawed DNS rebinding protection.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-02T00:39:49.000000Z"} 2022-07-02T00:39:49+00:00