CVE-2026-5624 | ProjectSend r2002 upload.php cross-site request forgery

Inserito da Angelo Barbosa | Apr 5, 2026 | CVE

A vulnerability identified as problematic has been detected in ProjectSend r2002. This vulnerability affects unknown code of the file upload.php. Performing a manipulation results in cross-site request forgery.

This vulnerability was named CVE-2026-5624. The attack may be initiated remotely. In addition, an exploit is available.

You should upgrade the affected component.

CVE-2026-5624 | ProjectSend r2002 upload.php cross-site request forgery

Post correlati

CVE-2024-26898 | Linux Kernel up to 6.8.1 aoecmd_cfg_pkts use after free

CVE-2026-2116 | itsourcecode Society Management System 1.0 /admin/edit_expenses.php expenses_id sql injection

CVE-2025-54558 | OpenAI Codex CLI up to 0.8.x auto-approves ripgrep inclusion of functionality from untrusted control sphere

CVE-2024-33773 | D-Link DIR-619L up to 2.06B1 /bin/boa webpage buffer overflow