CVE-2026-42091 | patrickhener goshs up to 2.0.1 httpserver/updown.go cross-site request forgery (GHSA-rhf7-wvw3-vjvm)

Inserito da Angelo Barbosa | Mag 4, 2026 | CVE

A vulnerability categorized as problematic has been discovered in patrickhener goshs up to 2.0.1. This issue affects some unknown processing of the file httpserver/updown.go. The manipulation results in cross-site request forgery.

This vulnerability was named CVE-2026-42091. The attack may be performed from remote. There is no available exploit.

It is advisable to upgrade the affected component.

CVE-2026-42091 | patrickhener goshs up to 2.0.1 httpserver/updown.go cross-site request forgery (GHSA-rhf7-wvw3-vjvm)

Post correlati

CVE-2023-51619 | D-Link DIR-X3260 prog.cgi SetMyDLinkRegistration stack-based overflow

CVE-2024-29839 | CS Technologies Australia Evolution Controller up to 2.04.560.31.03.2024 Web Interface information disclosure

CVE-2023-50964 | IBM InfoSphere Information Server 11.7 Web UI cross site scripting (XFDB-276102)

CVE-2024-36783 | Totolink LR350 9.3.5u.6369_B20220309 NTPSyncWithHost host_time command injection