A vulnerability was found in apostrophecms apostrophe up to 4.29.0 . It has been classified as critical . Affected is an unknown function. Performing a manipulation results in server-side request forgery. This vulnerability is cataloged as CVE-2026-45012 . It is possible to initiate the attack remotely. There is no exploit available.