Product

Gotenberg

4 briefs RSS

Gotenberg SSRF via IPv6 Address Confusion (CVE-2026-45741)

Gotenberg's `IsPublicIP` function incorrectly classifies IPv6 6to4, NAT64, and deprecated site-local addresses as public IPs, enabling an unauthenticated attacker to reach internal destinations such as cloud metadata services.

gotenberg/gotenberg/v8 ssrf gotenberg ipv6 cve-2026-45741

2r 1t 1c 3w ago

high advisory

Gotenberg Path Traversal Vulnerability via Windows-Style Separators in Zip Entry Name (CVE-2026-44829)

2 rules 1 TTP

Gotenberg is vulnerable to path traversal (CVE-2026-44829) due to improper sanitization of filenames in zip archives, allowing attackers to write files outside the intended extraction directory by using Windows-style path separators (backslashes) in uploaded filenames, affecting versions up to 8.32.0.

gotenberg/gotenberg path-traversal zip-archive cve-2026-44829

2r 1t 3w ago

critical advisory

Gotenberg Unauthenticated SSRF Vulnerability

2 rules 3 IOCs

Gotenberg is vulnerable to Server-Side Request Forgery (SSRF) due to bypassable default deny-lists in the `downloadFrom` and `webhook` features, where case-sensitive regex matching allows attackers to use IPv6 loopback URLs to bypass the deny-list and access internal HTTP services.

Gotenberg ssrf vulnerability

2r 3i May 7, 2026

medium advisory

Gotenberg Denial of Service via Context Pool Reuse

2 rules 2 TTPs

Gotenberg versions 8.31.0 and earlier are vulnerable to an unauthenticated denial-of-service attack where a race condition in the webhook middleware causes a panic and process termination when handling concurrent requests.

Gotenberg denial-of-service vulnerability

2r 2t Jan 3, 2024