CVE-2026-27941 | OpenLIT up to 1.37.0 Google Cloud Service pull_request_target inclusion of functionality from untrusted control sphere (GHSA-9jgv-x8cq-296q)

A vulnerability described as critical has been identified in OpenLIT up to 1.37.0. Affected is the function pull_request_target of the component Google Cloud Service. The manipulation results in inclusion of functionality from untrusted control sphere.

This vulnerability is known as CVE-2026-27941. It is possible to launch the attack remotely. No exploit is available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More