Vulnerabilities

CVE-2021-47776 - Umbraco v8.14.1 - 'baseUrl' SSRF (2026)

2026-01-15 0 views admin

CVE ID : CVE-2021-47776 Published : Jan. 15, 2026, 3:52 p.m. | 12 minutes ago Description : Umbraco CMS v8.14.1 contains a server-side request forgery vulnerability that allows attackers to manipulate baseUrl parameters in multiple dashboard and help controller endpoints. Attackers can craft malicious requests to the GetContextHelpForPage, GetRemoteDashboardContent, and GetRemoteDashboardCss endpoints to trigger unauthorized server-side requests to external hosts. Severity: 6.9 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2021-47776

Severity

MEDIUM

Published

Jan. 15, 2026

Source: Telegram CVE Monitor

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2021-47776medium

CVE-2021-47776 - Umbraco v8.14.1 - 'baseUrl' SSRF (2026)

CVE Details

🏷️ Tags

More from Vulnerabilities

CVE-2021-47763 - Aimeos Laravel ecommerce platform 2021.10 LTS - 'sort' SQL injection (2026)

Report: CVE-2021-47762 - HTTPDebuggerPro 9.11 - Unquoted Service Path

Latest: CVE-2021-47765 - AbsoluteTelnet 11.24 - 'Username' Denial of Service (PoC)

Update: CVE-2021-47764 - AbsoluteTelnet 11.24 - 'Phone' Denial of Service (PoC)

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting