Security Advisory

CVE-2026-38527

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-04-14 00:00:00

Last updated 2026-04-14 17:36:59

Assigner mitre

State PUBLISHED

Description

A Server-Side Request Forgery (SSRF) in the /settings/webhooks/create component of Webkul Krayin CRM v2.2.x allows attackers to scan internal resources via supplying a crafted POST request.

← Browse all CVEs View on cve.org ↗