CVE-2026-54491
HIGH SEVERITYCVSS Score & Metrics
Base Score
7.1 / 10
Vulnerability Description
Koel: Incomplete fix for CVE-2026-47260 — systemic SSRF in podcast & radio fetch paths
Vulnerability Details
Published Date
Last Modified
Source
GitHub
Vendor
composer
Product
phanan/koel
External References
- https://github.com/koel/koel/security/advisories/GHSA-6qvr-wjmv-v8mm
- https://github.com/koel/koel/pull/2546
- https://github.com/koel/koel/pull/2549
- https://github.com/koel/koel/commit/5f6ce2cefd08f437a269236b677ad971517ccbb6
- https://github.com/koel/koel/commit/c264a3d52513a83b21e1cc3a20e895caea97fc4a
- https://github.com/koel/koel/releases/tag/v9.7.1
- https://github.com/advisories/GHSA-6qvr-wjmv-v8mm
Discussion (0)
Add Comment
No comments yet. Be the first!