Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.3
SourceCodester Website Link Extractor 1.0 Allows Remote Attack
CVE-2026-3163
Summary
A bug in SourceCodester Website Link Extractor 1.0 lets a hacker trick the server into doing something it shouldn't. This could lead to unauthorized actions on the server. Update the software to fix this issue.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| remyandrade | website_link_extractor | 1.0 | – |
Original title
A vulnerability has been found in SourceCodester Website Link Extractor 1.0. This vulnerability affects the function file_get_contents of the component URL Handler. The manipulation leads to server...
Original description
A vulnerability has been found in SourceCodester Website Link Extractor 1.0. This vulnerability affects the function file_get_contents of the component URL Handler. The manipulation leads to server-side request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
nvd CVSS2.0
6.5
nvd CVSS3.1
7.5
nvd CVSS4.0
5.3
Vulnerability type
CWE-918
Server-Side Request Forgery (SSRF)
- https://medium.com/@hemantrajbhati5555/ssrf-vulnerability-in-sourcecodester-webs... Exploit Third Party Advisory
- https://vuldb.com/?ctiid.347670 Permissions Required VDB Entry
- https://vuldb.com/?id.347670 Third Party Advisory VDB Entry
- https://vuldb.com/?submit.758932 Third Party Advisory VDB Entry
- https://www.sourcecodester.com/ Product
Published: 25 Feb 2026 · Updated: 12 Mar 2026 · First seen: 6 Mar 2026