CVE-2026-58404 | gohugoio Hugo up to 0.163.0 Security HTTP URLs server-side request forgery

SecurityVulns

A vulnerability was found in gohugoio Hugo up to 0.163.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Security HTTP URLs. Performing a manipulation results in server-side request forgery.

This vulnerability is cataloged as CVE-2026-58404. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More