CVE-2026-5936 — An attacker can control a server-side HTTP request by supplying a crafted URL, causing the server to initiate requests to arbitrary destinations. This behavior may be exploited to probe internal netwo — CVE Database · The Intelligence Room