CVE-2026-42194 | admidio up to 5.0.8 fetch_metadata.php curl_init server-side request forgery (GHSA-hcjj-chvw-fmw9)

A vulnerability, which was classified as critical, has been found in admidio up to 5.0.8. This issue affects the function curl_init of the file fetch_metadata.php. Performing a manipulation results in server-side request forgery.

This vulnerability is identified as CVE-2026-42194. The attack can be initiated remotely. There is not any exploit available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More