Hello,
I am the security researcher who identified the Blind SSRF vulnerability in the Squidex CMS Restore API (CVE-2026-41177).
I have published a technical research repository that documents the vulnerability with detailed reproduction steps, log analysis, and an impact assessment. I believe this provides valuable supplemental context for the security community that goes beyond the initial advisory.
I would like to request that my repository be added as a reference to the advisory record for GHSA-45fq-w37p-qfw5 to aid other researchers and developers in understanding the mechanics of this flaw.
Repository Details:
URL: https://github.com/TurkiOS/CVE-2026-41177-Squidex-CMS
Content: Contains root cause analysis, a reproducible PoC, and log-based verification for the Blind SSRF vulnerability.
Please let me know if there is any additional information required from my side to facilitate this addition. Thank you for your time and for maintaining this database.
Best regards,
Turki
Hello,
I am the security researcher who identified the Blind SSRF vulnerability in the Squidex CMS Restore API (CVE-2026-41177).
I have published a technical research repository that documents the vulnerability with detailed reproduction steps, log analysis, and an impact assessment. I believe this provides valuable supplemental context for the security community that goes beyond the initial advisory.
I would like to request that my repository be added as a reference to the advisory record for GHSA-45fq-w37p-qfw5 to aid other researchers and developers in understanding the mechanics of this flaw.
Repository Details:
Please let me know if there is any additional information required from my side to facilitate this addition. Thank you for your time and for maintaining this database.
Best regards,
Turki