CVE-2026-33619 | PinchTab up to 0.8.3 /tasks server-side request forgery (GHSA-xqq2-4j46-vwp7)

Inserito da Angelo Barbosa | Mar 26, 2026 | CVE

A vulnerability marked as critical has been reported in PinchTab up to 0.8.3. The affected element is an unknown function of the file /tasks. The manipulation leads to server-side request forgery.

This vulnerability is uniquely identified as CVE-2026-33619. The attack is possible to be carried out remotely. No exploit exists.

It is suggested to upgrade the affected component.

CVE-2026-33619 | PinchTab up to 0.8.3 /tasks server-side request forgery (GHSA-xqq2-4j46-vwp7)

Post correlati

CVE-2024-23773 | Quest KACE Agent 12.0.38/13.1.23.0 on Windows KSchedulerSvc.exe denial of service

CVE-2024-42009 | RoundCube up to 1.5.7/1.6.7 E-Mail Message show.php message_body cross site scripting

CVE-2024-9673 | Piotnet Addons For Elementor Plugin up to 2.4.31 on WordPress cross site scripting

CVE-2025-1186 | dayrui XunRuiCMS up to 4.6.4 /Control/Api/Api.php thumb deserialization