CVE-2026-41177 | squidex up to 7.22.x Restore API Url file inclusion (GHSA-45fq-w37p-qfw5)

Inserito da Angelo Barbosa | Apr 23, 2026 | CVE

A vulnerability, which was classified as problematic, has been found in squidex up to 7.22.x. This impacts an unknown function of the component Restore API. Performing a manipulation of the argument Url results in file inclusion.

This vulnerability is known as CVE-2026-41177. Remote exploitation of the attack is possible. No exploit is available.

It is advisable to upgrade the affected component.

CVE-2026-41177 | squidex up to 7.22.x Restore API Url file inclusion (GHSA-45fq-w37p-qfw5)

Post correlati

CVE-2023-46712 | Fortinet FortiPortal up to 7.0.6/7.2.1 HTTP Request access control (FG-IR-23-395)

CVE-2024-2583 | WP Shortcodes Plugin up to 7.0.4 on WordPress Shortcode Attribute cross site scripting

CVE-2025-4753 | D-Link DI-7003GV2 24.04.18D1 R(68125) /login.data information disclosure

CVE-2023-5400 | Honeywell Experion Server heap-based overflow