CVE-2026-3750 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A security vulnerability has been detected in ContiNew Admin up to 4.2.0. This issue affects the function URI.create of the file continew-system/src/main/java/t…
Medium CVSS: 5.1

CVE-2026-3750

A security vulnerability has been detected in ContiNew Admin up to 4.2.0. This issue affects the function URI.create of the file continew-system/src/main/java/top/continew/admin/system/factory/S3ClientFactory.java of the component Storage Management Module. The manipulation leads to server-side request forgery. The attack is possible to be carried out remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Vendor
Continew
Product
Continew Admin
CWE
CWE-918
Yayın Tarihi
2026-03-08 17:16:08
Güncelleme
2026-03-10 18:57:37
Source Identifier
cna@vuldb.com
KEV Date Added
-

Kategoriler

CWE-918 Continew Admin MEDIUM Continew 2026

Referanslar

https://vuldb.com/?ctiid.349728 https://vuldb.com/?id.349728 https://vuldb.com/?submit.768033 https://www.notion.so/ContiNew-Admin-Server-Side-Request-Forgery-SSRF-vulnerability-in-storage-management-module-313ea92a3c4180b897f5e6352906bf1f