CVE-2026-30840

Publication date

2026-03-07 05:39:40

Family

GitHub_M

State

PUBLISHED

Description

Wallos is an open-source, self-hostable personal subscription tracker. Prior to version 4.6.2, there is a server-side request forgery vulnerability in notification testers. This issue has been patched in version 4.6.2.