CVE-2026-40516 | HKUDS OpenHarness HTTP Service web_fetch/web_search server-side request forgery

Inserito da Angelo Barbosa | Apr 17, 2026 | CVE

A vulnerability categorized as critical has been discovered in HKUDS OpenHarness. This vulnerability affects the function web_fetch/web_search of the component HTTP Service. The manipulation results in server-side request forgery.

This vulnerability is identified as CVE-2026-40516. The attack can be executed remotely. There is not any exploit available.

It is best practice to apply a patch to resolve this issue.

CVE-2026-40516 | HKUDS OpenHarness HTTP Service web_fetch/web_search server-side request forgery

Post correlati

CVE-2025-63075 | muffingroup Betheme Plugin up to 28.1.7 on WordPress cross site scripting

CVE-2024-13798 | pickplugins Post Grid and Gutenberg Blocks Plugin up to 2.3.5 on WordPress improper authorization

CVE-2025-14124 | Team Plugin up to 5.0.10 on WordPress Ajax Action sql injection

CVE-2024-21410 | Microsoft Exchange Server 2016 CU23/2019 CU13/2019 CU14 Remote Code Execution