CVE-2026-44661 | universal-tool-calling-protocol python-utcp up to 1.1.1 HTTPS Endpoint register_manual server-side request forgery (GHSA-39j6-4867-gg4w)

A vulnerability was found in universal-tool-calling-protocol python-utcp up to 1.1.1 and classified as critical. This vulnerability affects the function register_manual of the component HTTPS Endpoint. Such manipulation leads to server-side request forgery.

This vulnerability is traded as CVE-2026-44661. The attack may be launched remotely. There is no exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More