Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
6.0
Brecht Visual Link Preview allows hackers to access internal servers
CVE-2026-39670
Summary
A bug in Brecht Visual Link Preview's preview feature lets attackers access internal servers and data. This affects versions of the software up to 2.3.0. Update to the latest version to fix the issue.
Original title
Server-Side Request Forgery (SSRF) vulnerability in Brecht Visual Link Preview visual-link-preview allows Server Side Request Forgery.This issue affects Visual Link Preview: from n/a through <= 2.3.0.
Original description
Server-Side Request Forgery (SSRF) vulnerability in Brecht Visual Link Preview visual-link-preview allows Server Side Request Forgery.This issue affects Visual Link Preview: from n/a through <= 2.3.0.
Vulnerability type
CWE-918
Server-Side Request Forgery (SSRF)
Published: 8 Apr 2026 · Updated: 9 Apr 2026 · First seen: 8 Apr 2026