Centrifugal - Centrifugo - CRITICAL - CVE-2026-32301. Centrifugo, an open-source scalable real-time messaging server, is vulnerable to Server-Side Request Forgery (SSRF) when configured with a dynamic JWKS endpoint URL that utilizes template variables. An unauthenticated attacker can exploit this vulnerability by crafting a malicious JWT with inappropriate 'iss' or 'aud' claim values. These manipulated claims enable the attacker to interpolate their values into the JWKS fetch URL, leading Centrifugo to execute an outbound HTTP request to a location controlled by the attacker. This issue is resolved in version 6.7.0 of Centrifugo.