A vulnerability identified as critical has been detected in scalar astro 0.1.13 . The impacted element is an unknown function of the component Proxy Endpoint . This manipulation of the argument scalar_url causes server-side request forgery. This vulnerability appears as CVE-2026-30118 . The attack may be initiated remotely. There is no available exploit.