CVE-2026-7581 | alexta69 MeTube up to 2026.04.09 CORS Policy app/main.py on_prepare cross-domain policy

Inserito da Angelo Barbosa | Mag 1, 2026 | CVE

A vulnerability classified as problematic has been found in alexta69 MeTube up to 2026.04.09. This affects the function on_prepare of the file app/main.py of the component CORS Policy. The manipulation leads to permissive cross-domain policy with untrusted domains.

This vulnerability is uniquely identified as CVE-2026-7581. The attack is possible to be carried out remotely. Moreover, an exploit is present.

It is recommended to upgrade the affected component.

CVE-2026-7581 | alexta69 MeTube up to 2026.04.09 CORS Policy app/main.py on_prepare cross-domain policy

Post correlati

CVE-2026-6606 | modelscope agentscope up to 1.0.18 _agent_base.py _process_audio_block url server-side request forgery

CVE-2024-32559 | hwk-fr WP 404 Auto Redirect to Similar Post Plugin up to 1.0.4 on WordPress cross site scripting

CVE-2024-6826 | GitLab Community Edition/Enterprise Edition up to 17.3.5/17.4.2/17.5.0 XML Manifest File allocation of resources

CVE-2024-36279 | FreeFrom App up to 1.3.4 on Android/iOS channel accessible