CVE-2026-41461 | SocialEngine up to 7.8.0 Request Parameter /core/link/preview server-side request forgery

Inserito da Angelo Barbosa | Apr 23, 2026 | CVE

A vulnerability, which was classified as critical, was found in SocialEngine up to 7.8.0. Impacted is an unknown function of the file /core/link/preview of the component Request Parameter Handler. Such manipulation leads to server-side request forgery.

This vulnerability is traded as CVE-2026-41461. The attack may be launched remotely. There is no exploit available.

CVE-2026-41461 | SocialEngine up to 7.8.0 Request Parameter /core/link/preview server-side request forgery

Post correlati

CVE-2025-36361 | IBM App Connect Enterprise up to 12.0.12.17/13.0.4.2 authorization

CVE-2026-5815 | D-Link DIR-645 1.01/1.02/1.03 /cgi-bin/hedwig.cgi hedwigcgi_main stack-based overflow

CVE-2026-39440 | Funnelforms FunnelFormsPro Plugin up to 3.8.1 on WordPress Inclusion.This code injection

CVE-2024-37089 | StylemixThemes Consulting Elementor Widgets Plugin up to 1.3.0 on WordPress path traversal