← العودة للجدول
CVE-2026-16194
CVE-2026-16194 | zhayujie CowAgent up to 2.1.1 web_fetch.py WebFetch.execute url server-side request forgery (Issue 2889)
📅 2026-07-18
🟡 Medium 🔥 No VulDB Exploit Exploit

📋 الوصف الكامل

A vulnerability was found in zhayujie CowAgent up to 2.1.1. It has been declared as critical. This affects the function WebFetch.execute of the file agent/tools/web_fetch/web_fetch.py. Executing a manipulation of the argument url can lead to server-side request forgery. This vulnerability appears as CVE-2026-16194. The attack may be performed from remote. In addition, an exploit is available. It

💻 الأنظمة المتأثرة

⚠️ نوع التهديد

Exploit

🔗 CVE ID

CVE-2026-16194

📡 المصدر

VulDB

✅ الحلول والتخفيف

Apply vendor security patch

🔗 المصدر الأصلي ← 📘 NVD ← ⚡ CISA KEV ← 🔍 Valters IT ←