CVE-2026-45561 | Roxy-WI up to 8.2.6.4 URL Path server-side request forgery

Inserito da Angelo Barbosa | Giu 10, 2026 | CVE

A vulnerability labeled as critical has been found in Roxy-WI up to 8.2.6.4. This impacts an unknown function of the component URL Path. The manipulation results in server-side request forgery.

This vulnerability is known as CVE-2026-45561. It is possible to launch the attack remotely. No exploit is available.

CVE-2026-45561 | Roxy-WI up to 8.2.6.4 URL Path server-side request forgery

Post correlati

CVE-2025-4878 | libssh up to 0.11.1 privatekey_from_file uninitialized pointer

CVE-2025-64504 | Langfuse up to 2.95.10/3.124.0 API information exposure (GHSA-94hf-6gqq-pj69)

CVE-2023-50071 | SourceCodester Customer Support System 1.0 ajax.php id/name sql injection

CVE-2025-10210 | yanyutao0402 ChanCMS up to 3.3.0 Api.js search key sql injection