CVE-2026-41195 | mosparo up to 1.4.12 Automatic Rule Package Source URL Feature server-side request forgery (GHSA-92fh-26qf-r8rg)

Inserito da Angelo Barbosa | Mag 13, 2026 | CVE

A vulnerability described as critical has been identified in mosparo up to 1.4.12. The affected element is an unknown function of the component Automatic Rule Package Source URL Feature. Executing a manipulation can lead to server-side request forgery.

The identification of this vulnerability is CVE-2026-41195. The attack may be launched remotely. There is no exploit available.

Upgrading the affected component is recommended.

CVE-2026-41195 | mosparo up to 1.4.12 Automatic Rule Package Source URL Feature server-side request forgery (GHSA-92fh-26qf-r8rg)

Post correlati

CVE-2025-7770 | Tigo Energy Cloud Connect Advanced up to 4.0.1 prng seed (icsa-25-217-02)

CVE-2024-21671 | vantage6 up to 4.1.x timing discrepancy (GHSA-45gq-q4xh-cp53)

CVE-2023-51557 | Foxit PDF Reader AcroForm Doc use after free (ZDI-23-1870)

CVE-2024-36046 | Infoblox NIOS up to 8.6.4 unnecessary privileges