CVE-2026-5562 | provectus kafka-ui up to 0.7.2 Endpoint testexecutions validateAccess code injection

Inserito da Angelo Barbosa | Apr 4, 2026 | CVE

A vulnerability marked as critical has been reported in provectus kafka-ui up to 0.7.2. This impacts the function validateAccess of the file /api/smartfilters/testexecutions of the component Endpoint. The manipulation leads to code injection.

This vulnerability is documented as CVE-2026-5562. The attack can be initiated remotely. Additionally, an exploit exists.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-5562 | provectus kafka-ui up to 0.7.2 Endpoint testexecutions validateAccess code injection

Post correlati

CVE-2024-4512 | SourceCodester Prison Management System 1.0 edit-profile.php cross site scripting

CVE-2026-33373 | Zimbra Collaboration Suite 10.0/10.1 cross-site request forgery

CVE-2025-5525 | Jrohy trojan up to 2.15.3 trojan/util/linux.go LogChan c os command injection

CVE-2025-7743 | Dolusoft Omaspot prior 12.09.2025 cleartext transmission