CVE-2026-44847 | 1Panel-dev MaxKB up to 2.8.x WebHook Trigger /api/trigger/v1/webhook/ WebhookAuth improper authentication (ID 5213)

Inserito da Angelo Barbosa | Mag 26, 2026 | CVE

A vulnerability classified as critical was found in 1Panel-dev MaxKB up to 2.8.x. This issue affects the function WebhookAuth of the file /api/trigger/v1/webhook/ of the component WebHook Trigger Handler. The manipulation results in improper authentication.

This vulnerability is known as CVE-2026-44847. It is possible to launch the attack remotely. No exploit is available.

Upgrading the affected component is advised.

CVE-2026-44847 | 1Panel-dev MaxKB up to 2.8.x WebHook Trigger /api/trigger/v1/webhook/ WebhookAuth improper authentication (ID 5213)

Post correlati

CVE-2026-3849 | wolfSSL up to 5.8.4 ECH wc_HpkeLabeledExtract out-of-bounds write

CVE-2024-22304 | Borbis Media FreshMail For WordPress Plugin up to 2.3.2 on WordPress cross-site request forgery

CVE-2026-1423 | code-projects Online Examination System 1.0 /admin_pic.php unrestricted upload

CVE-2022-38141 | Zorem Sales Report Email for WooCommerce Plugin up to 2.8 on WordPress authorization