CVE-2026-5259 | AutohomeCorp frostmourne up to 1.0 Alarm Preview AlarmController.java server-side request forgery

Inserito da Angelo Barbosa | Mar 31, 2026 | CVE

A vulnerability labeled as critical has been found in AutohomeCorp frostmourne up to 1.0. The affected element is an unknown function of the file frostmourne-monitor/src/main/java/com/autohome/frostmourne/monitor/controller/AlarmController.java of the component Alarm Preview. Executing a manipulation can lead to server-side request forgery.

This vulnerability appears as CVE-2026-5259. The attack may be performed from remote. In addition, an exploit is available.

CVE-2026-5259 | AutohomeCorp frostmourne up to 1.0 Alarm Preview AlarmController.java server-side request forgery

Post correlati

CVE-2024-6848 | BoldGrid Post and Page Builder Plugin up to 1.26.6 on WordPress File Upload cross site scripting

CVE-2024-4223 | Tutor LMS Plugin up to 2.7.0 on WordPress authorization

CVE-2024-5901 | SiteOrigin Widgets Bundle up to 1.62.2 on WordPress Image Grid Widget cross site scripting

CVE-2024-22303 | favethemes Houzez Plugin up to 3.2.4 on WordPress privileges assignment