CVE-2026-44736 | opf openproject up to 17.3.x /api/v3/relations information disclosure (GHSA-p9gq-hrgh-2645)

Inserito da Angelo Barbosa | Giu 26, 2026 | CVE

A vulnerability categorized as problematic has been discovered in opf openproject up to 17.3.x. This vulnerability affects unknown code of the file /api/v3/relations. Executing a manipulation can lead to information disclosure.

This vulnerability is registered as CVE-2026-44736. It is possible to launch the attack remotely. No exploit is available.

It is advisable to upgrade the affected component.

CVE-2026-44736 | opf openproject up to 17.3.x /api/v3/relations information disclosure (GHSA-p9gq-hrgh-2645)

Post correlati

CVE-2025-25513 | SeaCMS up to 13.3 admin_members.php sql injection

CVE-2024-34310 | Jin Fang Times Content Management System 3.2.3 id sql injection

CVE-2024-41465 | Tenda FH1201 1.2.0.14 ip/goform/setcfm funcpara1 stack-based overflow

CVE-2025-41064 | GTT OpenSIAC 1.0 Cl@ve improper authentication