CVE-2026-35587 | nicolargo glances up to 4.5.3 Configuration Parameter public_api server-side request forgery (GHSA-g5pq-48mj-jvw8)

A vulnerability marked as critical has been reported in nicolargo glances up to 4.5.3. The affected element is the function public_api of the component Configuration Parameter Handler. The manipulation leads to server-side request forgery.

This vulnerability is uniquely identified as CVE-2026-35587. The attack is possible to be carried out remotely. No exploit exists.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More