CVE-2026-41282 | ProjectDiscovery Nuclei up to 3.7.x DSL code injection (GHSA-jm34-66cf-qpvr / EUVD-2026-23795)

A vulnerability has been found in ProjectDiscovery Nuclei up to 3.7.x and classified as critical. Affected is an unknown function of the component DSL Handler. This manipulation causes code injection.

This vulnerability is handled as CVE-2026-41282. The attack can be initiated remotely. There is not any exploit available.

The affected component should be upgraded.VulDB Recent EntriesRead More