CVE-2026-27567 | payloadcms payload up to 3.74.x server-side request forgery

Inserito da Angelo Barbosa | Feb 24, 2026 | CVE

A vulnerability, which was classified as critical, was found in payloadcms payload up to 3.74.x. Impacted is an unknown function. Such manipulation leads to server-side request forgery.

This vulnerability is traded as CVE-2026-27567. The attack may be launched remotely. There is no exploit available.

You should upgrade the affected component.

CVE-2026-27567 | payloadcms payload up to 3.74.x server-side request forgery

Post correlati

CVE-2025-21727 | Linux Kernel up to 6.1.128/6.6.75/6.12.12/6.13.1 synchronize_rcu use after free

CVE-2025-7163 | PHPGurukul Zoo Management System 2.1 /admin/add-animals.php cnum sql injection

CVE-2025-11121 | Tenda AC18 15.03.05.19 /goform/AdvSetLanip lanIp command injection

CVE-2025-1564 | Select-Themes SetSail Membership Plugin up to 1.0.3 on WordPress Social Login authentication bypass