Vulnerability DatabaseCVE-2026-37504
Mend.io Vulnerability Database
The largest open source vulnerability database
What is a Vulnerability ID?
New vulnerability? Tell us about it!
CVE-2026-37504
Published:May 01, 2026
Updated:May 16, 2026
Sensitive server_token exposed via GET parameter in V2Board thru 1.7.4. In app/Http/Controllers/Server/UniProxyController.php, the server authentication token is accepted via GET parameter transmission. The token appears in URLs such as /api/v1/server/UniProxy/user?token=SECRET, causing it to be recorded in web server access logs, browser history, HTTP Referer headers, and proxy/CDN logs. An attacker who gains access to any log source can extract the token and impersonate a proxy server node, potentially intercepting all user traffic.
Related Resources (2)
https://github.com/v2board/v2board
https://gist.github.com/sgInnora/1330e1a82caa79906eec55eeff2c99b9
Do you need more information?
Contact Us
CVSS v4
Base Score:
6
Attack Vector
NETWORK
Attack Complexity
HIGH
Attack Requirements
NONE
Privileges Required
NONE
User Interaction
PASSIVE
Vulnerable System Confidentiality
HIGH
Vulnerable System Integrity
NONE
Vulnerable System Availability
NONE
Subsequent System Confidentiality
NONE
Subsequent System Integrity
NONE
Subsequent System Availability
NONE
CVSS v3
Base Score:
5.3
Attack Complexity
HIGH
Attack Vector
NETWORK
Availability
NONE
Confidentiality
HIGH
Integrity
NONE
Privileges Required
NONE
Scope
UNCHANGED
User Interaction
REQUIRED
Weakness Type (CWE)
Use of HTTP Request With Sensitive Query String
CWE-598
EPSS
Base Score:
0.04