CVE-2026-40281 | Gotenberg up to 8.30.1 Metadata Write Endpoint argument injection (GHSA-q7r4-hc83-hf2q)

Inserito da Angelo Barbosa | Mag 7, 2026 | CVE

A vulnerability was found in Gotenberg up to 8.30.1. It has been declared as critical. This vulnerability affects unknown code of the component Metadata Write Endpoint. Executing a manipulation can lead to argument injection.

This vulnerability appears as CVE-2026-40281. The attack may be performed from remote. There is no available exploit.

A patch should be applied to remediate this issue.

CVE-2026-40281 | Gotenberg up to 8.30.1 Metadata Write Endpoint argument injection (GHSA-q7r4-hc83-hf2q)

Post correlati

CVE-2021-36806 | Sophos Email Appliance 4.5.3.3 cross site scripting

CVE-2024-3015 | SourceCodester Simple Subscription Website 1.0 manage_plan.php id sql injection

CVE-2024-4553 | WP Shortcodes Plugin up to 7.1.5 on WordPress Shortcode su_members cross site scripting

CVE-2026-4158 | KeePassXC OpenSSL Configuration uncontrolled search path