A vulnerability labeled as critical has been found in Roxy-WI up to 8.2.6.4 . This impacts an unknown function of the component URL Path . The manipulation results in server-side request forgery. This vulnerability is known as CVE-2026-45561 . It is possible to launch the attack remotely. No exploit is available.