VYPR
High severity7.5NVD Advisory· Published Mar 30, 2026· Updated Apr 29, 2026

CVE-2026-27018

CVE-2026-27018

Description

Gotenberg is an API for converting document formats. Prior to version 8.29.0, the fix introduced for CVE-2024-21527 can be bypassed using mixed-case or uppercase URL schemes. This issue has been patched in version 8.29.0.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
github.com/gotenberg/gotenberg/v8Go
< 8.29.08.29.0
github.com/gotenberg/gotenberg/v7Go
<= 7.10.2

Affected products

4

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.