CVE-2026-41687 | ellite Wallos up to 4.8.0 add.php is_cgnat_ip server-side request forgery

A vulnerability labeled as critical has been found in ellite Wallos up to 4.8.0. Affected by this issue is the function is_cgnat_ip of the file endpoints/payments/add.php. Such manipulation leads to server-side request forgery.

This vulnerability is listed as CVE-2026-41687. The attack may be performed from remote. There is no available exploit.

The affected component should be upgraded.VulDB Recent EntriesRead More