A vulnerability was found in woodpecker-ci woodpecker up to 3.14.x. It has been declared as problematic. The impacted element is an unknown function of the file /api/orgs/lookup of the component LookupOrg Handler. The manipulation results in null pointer dereference.

This vulnerability was named CVE-2026-58369. The attack may be performed from remote. There is no available exploit.

It is recommended to upgrade the affected component.