CVE-2026-42140 | xwiki-contrib macro-plantuml up to 2.4.0 server server-side request forgery (GHSA-42fc-7w97-8vrc)

A vulnerability was found in xwiki-contrib macro-plantuml up to 2.4.0. It has been rated as critical. Affected by this vulnerability is an unknown functionality. Performing a manipulation of the argument server results in server-side request forgery.

This vulnerability was named CVE-2026-42140. The attack may be initiated remotely. There is no available exploit.

Upgrading the affected component is advised.VulDB Recent EntriesRead More