CVE-2026-12986 | Payara Server up to 7.2026.5 Admin GUI cross-site request forgery

Inserito da Angelo Barbosa | Giu 24, 2026 | CVE

A vulnerability, which was classified as problematic, was found in Payara Server up to 7.2026.5. The impacted element is an unknown function of the component Admin GUI. Executing a manipulation can lead to cross-site request forgery.

This vulnerability is registered as CVE-2026-12986. It is possible to launch the attack remotely. No exploit is available.

You should upgrade the affected component.

CVE-2026-12986 | Payara Server up to 7.2026.5 Admin GUI cross-site request forgery

Post correlati

CVE-2024-34139 | Adobe Bridge up to 14.0.4/13.0.7/14.1 integer overflow (apsb24-51)

CVE-2026-28223 | Wagtail up to 6.3.7/7.0.5/7.2.2/7.3.0 wagtail.contrib.simple_translation cross site scripting

CVE-2024-7677 | SourceCodester Car Driving School Management System 1.0 SystemSettings.php update_settings_info contact/address cross site scripting

CVE-2024-11089 | cayenne Anonymous Restricted Content Plugin up to 1.6.5 on WordPress information disclosure