CVE-2026-1089 | Fortra GoAnywhere MFT up to 7.9.x HTTP Header injection

Inserito da Angelo Barbosa | Apr 21, 2026 | CVE

A vulnerability classified as problematic has been found in Fortra GoAnywhere MFT up to 7.9.x. This issue affects some unknown processing of the component HTTP Header Handler. This manipulation causes injection.

This vulnerability appears as CVE-2026-1089. The attack may be initiated remotely. There is no available exploit.

It is recommended to upgrade the affected component.

CVE-2026-1089 | Fortra GoAnywhere MFT up to 7.9.x HTTP Header injection

Post correlati

CVE-2024-29149 | Alcatel-Lucent ALE NOE Deskphone Firmware Image toctou (SYSS-2024-010)

CVE-2024-2838 | WPC Composite Products for WooCommerce Plugin up to 7.2.7 on WordPress cross site scripting

CVE-2026-33470 | blakeblackshear frigate 0.17.0 /api/timeline authorization (GHSA-m2mg-pj9p-2r7g)

CVE-2024-27317 | Apache Pulsar up to 2.10.5/2.11.3/3.0.2/3.1.2/3.2.0 path traversal