CVE-2026-32133 | Bubka 2FAuth up to 6.0.x Image Parser image server-side request forgery (GHSA-8qp3-x2mp-j6f8)

Inserito da Angelo Barbosa | Mar 12, 2026 | CVE

A vulnerability was found in Bubka 2FAuth up to 6.0.x. It has been rated as critical. Affected by this issue is some unknown functionality of the component Image Parser. Performing a manipulation of the argument image results in server-side request forgery.

This vulnerability is reported as CVE-2026-32133. The attack is possible to be carried out remotely. No exploit exists.

Upgrading the affected component is advised.

CVE-2026-32133 | Bubka 2FAuth up to 6.0.x Image Parser image server-side request forgery (GHSA-8qp3-x2mp-j6f8)

Post correlati

CVE-2024-33424 | CMSimple 5.15 Settings Menu Downloads cross site scripting

CVE-2022-30266 | Emerson PACSystem RXi/PACSystem RSTi-EP/Fanuc VersaMax insufficiently protected credentials (icsa-24-158-01)

CVE-2024-37564 | PayPlus Payment Gateway Plugin up to 7.0.7 on WordPress sql injection

CVE-2024-13627 | OWL Carousel Slider Plugin up to 2.2 on WordPress cross site scripting