CVE-2026-13150

UNKNOWN 0.0

SSRF in Pentestify PDF generation endpoint via Host header

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Server-Side Request Forgery (SSRF) (CWE-918) in the PDF generation endpoint GET /api/reports/{id}/pdf (backend/main.py) in ccyl13 Pentestify 1.0.0 and lower allows remote attackers to make the server issue requests to arbitrary internal or external URLs, including cloud metadata services, and return the rendered content in the resulting PDF via a crafted Host header, because the target URL is built from request.base_url without validation.

CWE	CWE-918
Vendor	pentestify
Product	pentestify
Published	Jun 24, 2026
Last Updated	Jun 24, 2026

Stay Ahead of the Next One

Get instant alerts for pentestify pentestify

Be the first to know when new unknown vulnerabilities affecting pentestify pentestify are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Pentestify / Pentestify

0 < 1.1.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/ccyl13/Pentestify/commit/a058a22b42c6311895622645265df79a60265b1d

Credits

Dario Rivas Quero from Secur0 security team Cristian Fernandez Cornejo from Secur0 security team Mario Alvarez Fernandez Xoan M. Otero Jorge Secur0 CNA