SkatDesign Ratatouille allows hackers to make fake requests from your server

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

6.4

SkatDesign Ratatouille allows hackers to make fake requests from your server

CVE-2026-28036

Summary

The vulnerability in SkatDesign Ratatouille can be exploited by hackers to make your server send requests to any website or server on the internet, potentially allowing them to access sensitive information or disrupt your system. This affects older versions of Ratatouille, so make sure to update to the latest version. Update to version 1.2.7 or later to fix the issue.

Original title

Server-Side Request Forgery (SSRF) vulnerability in SkatDesign Ratatouille ratatouille allows Server Side Request Forgery.This issue affects Ratatouille: from n/a through <= 1.2.6.

Original description

Server-Side Request Forgery (SSRF) vulnerability in SkatDesign Ratatouille ratatouille allows Server Side Request Forgery.This issue affects Ratatouille: from n/a through <= 1.2.6.

nvd CVSS3.1 6.4

Vulnerability type

CWE-918 Server-Side Request Forgery (SSRF)

https://patchstack.com/database/Wordpress/Theme/ratatouille/vulnerability/wordpr...

Published: 5 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026