VYPR

Arelle

by Arelle

Source repositories

CVEs (1)

  • CVE-2026-42796CriMay 4, 2026
    risk 0.57cvss 9.8epss 0.01

    Arelle before 2.39.10 contains an unauthenticated remote code execution vulnerability in the /rest/configure REST endpoint that accepts a plugins query parameter and forwards it to the plugin manager without authentication or authorization. Attackers can supply a URL to a…