{"data":{"id":"4af0d09e-f0aa-460d-b206-35d13088b6fc","title":"CVE-2026-13233: Server-Side Request Forgery (SSRF) vulnerability in Drupal OpenAI Provider allows Server Side Request Forgery. This issu","summary":"CVE-2026-13233 is a server-side request forgery (SSRF, a vulnerability that tricks a server into making unwanted requests to other systems) vulnerability in the Drupal OpenAI Provider module that affects versions 0.0.0 through 1.1.1 and 1.2.0 through 1.2.2. The vulnerability allows attackers to exploit this flaw, though specific attack details are not provided in this summary.","solution":"N/A -- no mitigation discussed in source.","labels":["security"],"sourceUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-13233","publishedAt":"2026-07-10T22:16:39.397Z","cveId":"CVE-2026-13233","cweIds":["CWE-918"],"cvssScore":null,"cvssSeverity":null,"severity":"medium","attackType":["other"],"issueType":"vulnerability","affectedPackages":null,"affectedVendors":["OpenAI"],"affectedVendorsRaw":["OpenAI","Drupal OpenAI Provider"],"classifierModel":"claude-haiku-4-5-20251001","classifierPromptVersion":"v3","cvssVector":null,"attackVector":null,"attackComplexity":null,"privilegesRequired":null,"userInteraction":null,"exploitMaturity":"unknown","epssScore":0,"patchAvailable":null,"disclosureDate":"2026-07-10T22:16:39.397Z","capecIds":["CAPEC-664"],"crossRefCount":0,"attackSophistication":"moderate","impactType":["confidentiality","integrity"],"aiComponentTargeted":"api","llmSpecific":true,"classifierConfidence":0.75,"researchCategory":null,"atlasIds":null}}