MEDIUM
EstrellaXD
CVE published 2026-07-02
CVE-2026-59101
CVE-2026-59101 is a server-side request forgery (SSRF) vulnerability in AutoBangumi before 3.2.8. Unauthenticated remote attackers can exploit this to probe and potentially access internal network services. The vulnerability is located in the unprotected setup endpoint, specifically the POST /api/v1/setup/test-downloader endpoint, which can be exploited during the initial setup window. By supplying arbitr [truncated]