PatchSiren

EstrellaXD CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

MEDIUM EstrellaXD CVE published 2026-07-02

CVE-2026-59101

CVE-2026-59101 is a server-side request forgery (SSRF) vulnerability in AutoBangumi before 3.2.8. Unauthenticated remote attackers can exploit this to probe and potentially access internal network services. The vulnerability is located in the unprotected setup endpoint, specifically the POST /api/v1/setup/test-downloader endpoint, which can be exploited during the initial setup window. By supplying arbitr [truncated]