CVE-2026-6744 in Bagistothông tin

Tóm tắt

Bởi MITRE • 21/04/2026

A vulnerability was found in Bagisto up to 2.3.15. Affected is the function copy of the component Downloadable Link Handler. The manipulation results in server-side request forgery. The attack may be launched remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure and explains: "We already replied on the github advisories. All the security issues are addressed through security advisory. We will fix this in our upcomming releases."

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

chịu trách nhiệm

VulDB

Tiết lộ

21/04/2026

Kiểm duyệt

được chấp nhận

mục

VDB-358435

CPE

sẵn sàng

CWE

CWE-918 (Đã xác nhận)

Khai thác

Tải xuống

CVSS

6.3 (VulDB)

EPSS

0.00043

KEV

không

Các hoạt động

rất thấp

Nguồn

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-6744
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-6744
CVE Details	https://www.cvedetails.com/cve/CVE-2026-6744/

◂ Trước Tổng Quan Tiếp theo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!