Back to CVE List

CVE-2026-55791

CRITICAL SEVERITY

Vulnerability Description

Craft CMS: Blind SSRF and Arbitrary JavaScript Injection via Host Header Poisoning in actionResourceJs

Vulnerability Details

Published Date
Last Modified
Source
GitHub
Vendor
composer
Product
craftcms/cms

External References

Discussion (0)

Add Comment

No comments yet. Be the first!