EIP-2026-107691
PRE-CVEI_ Librarian 4.6/4.7 - Command Injection / Server Side Request Forgery / Directory Enumeration / Cross-Site Scripting
Title source: legacyDescription
I_ Librarian 4.6/4.7 - Command Injection / Server Side Request Forgery / Directory Enumeration / Cross-Site Scripting
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by SEC Consult · textwebappsphp
https://www.exploit-db.com/exploits/41979
Details
Status
pre_cve
Tracked Since
Feb 18, 2026