CVE-2026-23768 | NAVER lucy-xss-filter File Extension server-side request forgery

A vulnerability was found in NAVER lucy-xss-filter. It has been rated as critical. The affected element is an unknown function of the component File Extension Handler. Performing a manipulation results in server-side request forgery. This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability was named CVE-2026-23768. The attack may be initiated remotely. There is no available exploit.

To fix this issue, it is recommended to deploy a patch.VulDB Recent EntriesRead More