CVE-2026-10287

EUVD-2026-33758
A vulnerability was determined in SourceCodester SEO Meta Tag Extractor 1.0. This vulnerability affects the function get_headers of the file /index.php. This manipulation of the argument url causes server-side request forgery. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized.
SSRF
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.3 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Common Weakness Enumeration
References
https://hackmd.io/@Kq4PsjnpQ5WfoMt8ho48LA/By9GXDkyGe
https://vuldb.com/cve/CVE-2026-10287
https://vuldb.com/submit/825641
https://vuldb.com/vuln/367580
https://vuldb.com/vuln/367580/cti
https://www.sourcecodester.com/