CVE-2026-34403 | 0xJacky nginx-ui up to 2.3.4 gorilla/websocket missing origin validation in websockets (GHSA-78mf-482w-62qj)

A vulnerability was found in 0xJacky nginx-ui up to 2.3.4 and classified as problematic. The impacted element is an unknown function of the component gorilla/websocket. Such manipulation leads to missing origin validation in websockets.

This vulnerability is documented as CVE-2026-34403. The attack can be executed remotely. There is not any exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More