CVE-2026-33401 | ellite Wallos up to 4.6.x AI Recommendations Endpoint AI Ollama host server-side request forgery

Inserito da Angelo Barbosa | Mar 24, 2026 | CVE

A vulnerability, which was classified as critical, was found in ellite Wallos up to 4.6.x. Impacted is an unknown function of the component AI Recommendations Endpoint. The manipulation of the argument AI Ollama host results in server-side request forgery.

This vulnerability is known as CVE-2026-33401. It is possible to launch the attack remotely. No exploit is available.

You should upgrade the affected component.

CVE-2026-33401 | ellite Wallos up to 4.6.x AI Recommendations Endpoint AI Ollama host server-side request forgery

Post correlati

CVE-2024-55653 | PwnDoc up to 0.5.3 denial of service (GHSA-ggqg-3f7v-c8rc)

CVE-2024-52525 | Nextcloud Server up to 28.0.11/29.0.8/30.0.1 cleartext storage (GHSA-w7v5-mgxm-v6gm)

CVE-2024-0735 | SourceCodester Online Tours & Travels Management System 1.0 expense.php exec sql injection

CVE-2025-24656 | Realtyna Provisioning Plugin up to 1.2.2 on WordPress cross site scripting