{"id":81004,"date":"2026-06-24T14:15:17","date_gmt":"2026-06-24T10:45:17","guid":{"rendered":"https:\/\/afaghhosting.net\/blog\/cve-2026-13150-ssrf-in-pentestify-pdf-generation-endpoint-via-host-header\/"},"modified":"2026-06-24T14:15:17","modified_gmt":"2026-06-24T10:45:17","slug":"cve-2026-13150-ssrf-in-pentestify-pdf-generation-endpoint-via-host-header","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/cve-2026-13150-ssrf-in-pentestify-pdf-generation-endpoint-via-host-header\/","title":{"rendered":"CVE-2026-13150 &#8211; SSRF in Pentestify PDF generation endpoint via Host header"},"content":{"rendered":"<p>CVE ID :CVE-2026-13150<\/p>\n<p>  Published : June 24, 2026, 10:45 a.m. | 59\u00a0minutes ago<\/p>\n<p>  Description :Server-Side Request Forgery (SSRF) (CWE-918) in the PDF generation endpoint GET \/api\/reports\/{id}\/pdf (backend\/main.py) in ccyl13 Pentestify 1.0.0 and lower allows remote attackers to make the server issue requests to arbitrary internal or external URLs, including cloud metadata services, and return the rendered content in the resulting PDF via a crafted Host header, because the target URL is built from request.base_url without validation.<\/p>\n<p>  Severity: 6.9 | MEDIUM<\/p>\n<p>  Visit the link for more details, such as CVSS details, affected products, timeline, and more&#8230;\u00a0<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CVE ID :CVE-2026-13150 Published : June 24, 2026, 10:45 a.m. | 59\u00a0minutes ago Description :Server-Side Request Forgery (SSRF) (CWE-918) in the PDF generation endpoint GET \/api\/reports\/{id}\/pdf (backend\/main.py) in ccyl13 Pentestify 1.0.0 and lower allows remote attackers to make the server issue requests to arbitrary internal or external URLs, including cloud metadata services, and return the &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-81004","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/81004","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=81004"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/81004\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=81004"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=81004"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=81004"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}