PatchSiren

PatchSiren cyber security CVE debrief

CVE-2026-10107 jxxghp CVE debrief

MoviePilot v2 contains a server-side request forgery (SSRF) vulnerability in the image proxy endpoint. The vulnerability exists because the SecurityUtils.is_safe_url function performs only domain-membership checking without validating that resolved addresses are not private, loopback, or link-local ranges. An authenticated attacker with a valid resource_token cookie can supply a URL whose domain matches the assembled allowlist, but the application does not prevent resolution to internal addresses. This enables attackers to enumerate internal services such as Jellyfin, Emby, or Plex and exfiltrate data from internal network resources. The vulnerability was disclosed on 2026-05-29 and affects MoviePilot v2 prior to version 2.13.2.

Vendor
jxxghp
Product
MoviePilot
CVSS
HIGH 7
CISA KEV
Not listed in stored evidence
Original CVE published
2026-05-29
Original CVE updated
2026-05-29
Advisory published
2026-05-29
Advisory updated
2026-05-29

Who should care

Organizations running MoviePilot v2 for media management, particularly those with the application deployed in environments with access to internal media servers (Jellyfin, Emby, Plex) or other sensitive internal resources. Security teams responsible for application security and network segmentation should prioritize this vulnerability due to its potential for internal reconnaissance and data exfiltration.

Technical summary

The vulnerability resides in the /api/v1/system/img/proxy endpoint of MoviePilot v2. The SecurityUtils.is_safe_url function validates that a URL's domain matches an allowlist but fails to perform additional validation on the resolved IP address. This allows an attacker to supply a domain that resolves to internal addresses (127.0.0.0/8, 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16, 169.254.0.0/16, or other private ranges) after passing the domain check. Successful exploitation requires a valid resource_token cookie, indicating the attacker must be authenticated. The vulnerability enables scanning of internal services, accessing internal APIs, and potentially exfiltrating data from services that trust requests originating from the MoviePilot server.

Defensive priority

HIGH

Recommended defensive actions

  • Upgrade to MoviePilot v2.13.2 or later to obtain the fix for the SSRF vulnerability in the image proxy endpoint.
  • Review and restrict network access to the MoviePilot application to authorized users only, as authentication is required to exploit this vulnerability.
  • Implement network segmentation to prevent the MoviePilot server from accessing sensitive internal services such as Jellyfin, Emby, or Plex.
  • Deploy egress filtering on the MoviePilot host to block outbound connections to private, loopback, and link-local address ranges.
  • Audit access logs for the /api/v1/system/img/proxy endpoint for anomalous URL patterns or requests to internal addresses.
  • Consider implementing additional SSRF protections such as URL validation that resolves hostnames and validates resulting IP addresses against blocklists.

Evidence notes

The vulnerability was reported via GitHub issue 5823 and disclosed by Vulncheck. The fix was committed in 0b7854a0af8751160b68c43c46ded48d2bd8a212 and released in version 2.13.2. The CVSS 4.0 vector indicates network attack vector, low attack complexity, privileged attacker requirements, and high confidentiality impact to the vulnerable system.

Official resources

2026-05-29