CVE-2026-27472 | SPIP up to 4.4.8 server-side request forgery

Inserito da Angelo Barbosa | Feb 19, 2026 | CVE

A vulnerability was found in SPIP up to 4.4.8. It has been rated as critical. The impacted element is an unknown function. This manipulation causes server-side request forgery.

The identification of this vulnerability is CVE-2026-27472. It is possible to initiate the attack remotely. There is no exploit available.

Upgrading the affected component is advised.

CVE-2026-27472 | SPIP up to 4.4.8 server-side request forgery

Post correlati

CVE-2024-20427 | Cisco TelePresence Management Suite Web-based Management Interface cross site scripting (cisco-sa-tms-xss-vuln-WbTcYwxG)

CVE-2024-46675 | Linux Kernel up to 6.10.7 usb dwc3_gadget_suspend buffer overflow

CVE-2026-1251 | SupportCandy Plugin up to 3.4.4 on WordPress add_reply description_attachments resource injection

CVE-2024-41011 | Linux Kernel up to 6.1.90/6.6.30/6.8.9 amdkfd Privilege Escalation