Threats Tagged 'cve-2026-15500'
View all threats tagged with 'cve-2026-15500'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2026-15500'
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-15500: Server-Side Request Forgery in AstrBotDevs AstrBotCVE-2026-15500 0 AstrBotDevs AstrBot versions 4.25.0, 4.25.1, and 4.25.2 contain a server-side request forgery (SSRF) vulnerability in the get_online_plugins function of the market_list endpoint. This vulnerability arises from manipulation of the custom_registry argument and can be exploited remotely without user interaction. The vendor has not responded to the disclosure, and no official patch or remediation is currently available. The vulnerability has a medium severity rating with a CVSS score of 5.3. Join the discussion | CVE Database V5 | 07/12/2026, 12:00:07 UTC Added: 07/12/2026, 12:18:22 UTC |
Showing 1 to 1 of 1 result