CVE-2026-5078 | morgan up to 1.10.1/1.10.x Authorization neutralization for logs (GHSA-4vj7-5mj6-jm8m)

Inserito da Angelo Barbosa | Giu 3, 2026 | CVE

A vulnerability was found in morgan up to 1.10.1/1.10.x and classified as problematic. Affected is an unknown function of the component Authorization Handler. Executing a manipulation can lead to improper output neutralization for logs.

This vulnerability is tracked as CVE-2026-5078. The attack can be launched remotely. No exploit exists.

It is suggested to upgrade the affected component.

CVE-2026-5078 | morgan up to 1.10.1/1.10.x Authorization neutralization for logs (GHSA-4vj7-5mj6-jm8m)

Post correlati

CVE-2024-13139 | wangl1989 mysiteforme 1.0 FileController doContent content server-side request forgery

CVE-2023-46675 | Elastic Kibana up to 7.17.15/8.11.1 log file

CVE-2024-0425 | ForU CMS up to 2020-06-23 index.php password recovery

VDB-263595 | Campcodes Complete Web-Based School Management System 1.0 show_friend_request.php my_index cross site scripting