CVE-2026-6414 | fastify static up to 9.1.0 url encoding (GHSA-x428-ghpx-8j92)

April 16, 2026 Yanac

A vulnerability was found in fastify static up to 9.1.0. It has been rated as problematic. Affected is an unknown function. The manipulation leads to improper handling of url encoding.

This vulnerability is uniquely identified as CVE-2026-6414. The attack is possible to be carried out remotely. No exploit exists.

Upgrading the affected component is advised.VulDB Recent EntriesRead More

CVE-2026-3369 | codesolz Better Find and Replace Plugin up to 1.7.9 on WordPress Uploaded Image Title cross site scripting (EUVD-2026-23221)
CVE-2026-3489 | designinvento DirectoryPress Plugin up to 3.6.26 on WordPress packages sql injection (EUVD-2026-23223)