CVE-2026-59095 - LobeChat < 2.2.10-canary.18 - SSRF via importFromUrl and fetchImageFromUrl
CVE ID :CVE-2026-59095 Published : July 2, 2026, 7:41 p.m. | 3 hours, 32 minutes ago Description :LobeChat before 2.2.10-canary.18 contains a server-side request forgery vulnerability that allows authenticated attackers to direct internal HTTP requests to arbitrary URLs by supplying...