5 matches found
EUVD-2026-17865
Blind server-side request forgery SSRF vulnerability in legacy connection methods of document co-authoring features in M-Files Server before 26.3 allow an unauthenticated attacker to cause the server to send HTTP GET requests to arbitrary URLs...
CVE-2026-0932
Blind server-side request forgery SSRF vulnerability in legacy connection methods of document co-authoring features in M-Files Server before 26.3 allow an unauthenticated attacker to cause the server to send HTTP GET requests to arbitrary URLs...
CVE-2026-0932
CVE-2026-0932 describes a blind SSRF in the legacy document co-authoring connection methods of M-Files Server prior to version 26.3. An unauthenticated attacker can trigger the server to render HTTP GET requests to arbitrary URLs, potentially leaking internal data or being abused for access to ex...
CVE-2026-0932
Blind server-side request forgery SSRF vulnerability in legacy connection methods of document co-authoring features in M-Files Server before 26.3 allow an unauthenticated attacker to cause the server to send HTTP GET requests to arbitrary URLs...
PT-2026-29509
Blind server-side request forgery SSRF vulnerability in legacy connection methods of document co-authoring features in M-Files Server before 26.3 allow an unauthenticated attacker to cause the server to send HTTP GET requests to arbitrary URLs...