CVE-2026-25534 | Spinnaker URL Validation server-side request forgery

Inserito da Angelo Barbosa | Mar 16, 2026 | CVE

A vulnerability classified as critical was found in Spinnaker. This vulnerability affects unknown code of the component URL Validation Handler. The manipulation results in server-side request forgery.

This vulnerability was named CVE-2026-25534. The attack may be performed from remote. There is no available exploit.

Upgrading the affected component is advised.

CVE-2026-25534 | Spinnaker URL Validation server-side request forgery

Post correlati

CVE-2024-2499 | Squelch Tabs and Accordions Shortcodes Plugin up to 0.4.3 on WordPress Shortcode accordions cross site scripting

CVE-2024-5020 | Gallery Plugin on WordPress FancyBox JavaScript Library cross site scripting

CVE-2024-1106 | Shariff Wrapper Plugin up to 4.6.9 on WordPress cross site scripting

CVE-2021-34962 | Foxit PDF Editor 11.0.0.49893 Caret Annotation use after free (ZDI-21-1193)