VYPR
← All advisories
Critical severityNVD Advisory· Published Jun 2, 2026

CVE-2026-34906

CVE-2026-34906

Description

Server-Side Template Injection in Wirtualna Uczelnia allows unauthenticated RCE by exploiting insufficient input validation in redirect parameters.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Server-Side Template Injection in Wirtualna Uczelnia allows unauthenticated RCE by exploiting insufficient input validation in redirect parameters.

Vulnerability

Server-Side Template Injection (SSTI) exists in Wirtualna Uczelnia versions up to wu#2016.437.295#0#20260327_105545 [2]. The vulnerability resides in the redirectToUrl endpoint and the redirectUrlParameter parameter, where insufficient input validation allows an attacker to inject arbitrary template expressions that are then executed on the server [2].

Exploitation

An unauthenticated attacker can exploit this vulnerability by crafting a malicious request targeting the redirectToUrl endpoint and providing a specially designed payload within the redirectUrlParameter. This payload will contain template expressions that, when processed by the server, lead to code execution [2]. No specific user interaction or special privileges are required for exploitation.

Impact

Successful exploitation of this vulnerability allows an attacker to achieve Remote Code Execution (RCE) on the server [2]. This can include the ability to run arbitrary commands, potentially leading to the establishment of a reverse shell, granting the attacker significant control over the affected system.

Mitigation

This vulnerability affects Wirtualna Uczelnia versions up to wu#2016.437.295#0#20260327_105545 [2]. A patch or updated version addressing this issue has not yet been disclosed in the available references. Users are advised to monitor for updates from the vendor.

References
  1. Podatności w oprogramowaniu Wirtualna Uczelnia

AI Insight generated on Jun 2, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

1

Patches

0

No patches discovered yet.

Vulnerability mechanics

No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.

References

2

News mentions

0

No linked articles in our index yet.