CVE-2026-1406 | lcg0124 BootDo up to 5ccd963c74058036b466e038cff37de4056c1600 Host Header AccessControlFilter.java redirectToLogin Hostname

A vulnerability has been found in lcg0124 BootDo up to 5ccd963c74058036b466e038cff37de4056c1600 and classified as problematic. Affected by this vulnerability is the function redirectToLogin of the file AccessControlFilter.java of the component Host Header Handler. This manipulation of the argument Hostname causes open redirect.

This vulnerability appears as CVE-2026-1406. The attack may be initiated remotely. In addition, an exploit is available.

This product uses a rolling release model to deliver continuous updates. As a result, specific version information for affected or updated releases is not available.

CVE-2026-1406 | lcg0124 BootDo up to 5ccd963c74058036b466e038cff37de4056c1600 Host Header AccessControlFilter.java redirectToLogin Hostname

Post correlati

CVE-2024-7918 | Pocket Widget Plugin up to 0.1.3 on WordPress Setting cross site scripting

CVE-2024-2321 | WSO2 API Manager/Identity Server Refresh Token authorization

CVE-2025-24754 | Houzez Plugin up to 3.4.0 on WordPress authorization

CVE-2024-2252 | Droit Elementor Addons Plugin up to 3.1.5 on WordPress cross site scripting