Description

A Server-Side Request Forgery (SSRF) in the /ureport/datasource/testConnection endpoint of SpringBlade v4.8.0 allows authenticated attackers to scan internal resources via a crafted GET request.

INFO

Published Date :

2026-04-30T00:00:00.000Z

Last Modified :

2026-04-30T17:44:11.222Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2026-36764 vulnerability.

Vendors Products
Chillzhuang
  • Springblade
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-36764.

URL Resource
https://github.com/chillzhuang/SpringBlade cve-icon cve-icon
https://github.com/chillzhuang/SpringBlade/issues/36 cve-icon cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System