Vulnerability Details - Title: save_images_Asset graphql mutation can be abused to exfiltrate AWS credentials of underlying host - Affected Versions: - - - Patched Versions: - - - CVE ID: CVE-2026-25492 - Severity: Moderate Summary - save_images_Asset graphql mutation can be exploited to download an image from an attacker's domain with an A record of a sensitive internal IP address. The attacker's URL can bypass validation checks when using a file extension. Impact - It allows attackers to exfiltrate sensitive data from the host, including AWS credentials if the host is an AWS EC2 instance. Preconditions - GraphQL access enabled. - Attacker has a GraphQL token with permissions for save_images_Asset mutation. - is an allowed file extension. PoC - Sample Python script demonstrates making a GraphQL mutation call to save_images_Asset and retrieve sensitive data.