M-Files: >> M-Files Server >> 26.1.15632.3 Security Vulnerabilities
Blind server-side request forgery (SSRF) vulnerability in legacy connection methods of document co-authoring features in M-Files Server before 26.3 allow an unauthenticated attacker to cause the server to send HTTP GET requests to arbitrary URLs.
CVSS Score
6.9
EPSS Score
0.001
Published
2026-04-01