CVE-2026-32947 | step-security harden-runner up to 2.15 HTTPS Endpoint protection mechanism (GHSA-46g3-37rh-v698)

Inserito da Angelo Barbosa | Mar 20, 2026 | CVE

A vulnerability has been found in step-security harden-runner up to 2.15 and classified as problematic. This issue affects some unknown processing of the component HTTPS Endpoint. Performing a manipulation results in protection mechanism failure.

This vulnerability is known as CVE-2026-32947. Remote exploitation of the attack is possible. No exploit is available.

The affected component should be upgraded.

CVE-2026-32947 | step-security harden-runner up to 2.15 HTTPS Endpoint protection mechanism (GHSA-46g3-37rh-v698)

Post correlati

CVE-2023-23354 | QNAP QuLog Center cross site scripting (qsa-23-13)

CVE-2025-12379 | Shortcodes and Extra Features for Phlox Theme Plugin Modern Heading Widget cross site scripting

CVE-2025-7644 | Pixel Gallery Addons for Elementor Plugin up to 1.6.7 on WordPress cross site scripting

CVE-2025-22581 | Bytephp Arcade Ready Plugin up to 1.1 on WordPress cross site scripting