Vulnerabilities in Cleanuparr
3 resultsCVE-2026-32702MEDIUMCleanuparr has Username Enumeration via Timing AttackEPSS 0.3%CVE-2026-44183CRITICALCleanuparr: X-Forwarded-For leftmost parsing allows remote unauthenticated admin takeover when reverse-proxy mode is enabledEPSS 0.2%CVE-2026-44184HIGHCleanuparr: Reflective CORS combined with trusted-network auth allows cross-origin admin API readsEPSS 0.1%