CVE-2026-22662 MEDIUM

CVE-2026-22662: prompts.chat Blind SSRF via media-generate

Vendor F
Product prompts.chat
Weakness CWE-918 · SSRF
Published April 3, 2026
Last update May 25, 2026

CVSS base score

5.3/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

What the vulnerability does

01Description

prompts.chat prior to commit 1464475 contains a blind server-side request forgery vulnerability in the Wiro media generator that allows authenticated users to perform server-side fetches of user-controlled inputImageUrl parameters. Attackers can exploit this vulnerability by sending POST requests to the /api/media-generate endpoint to probe internal networks, access internal services, and exfiltrate data through the upstream Wiro service without receiving direct response bodies.

Key dates

02Disclosure timeline

April 3, 2026 CVE published
May 25, 2026 Record updated