← voltar
CVE-2026-5638

HerikLyma CPPWebFramework path traversal

CVSS 6.9 MEDIUMEPSS 0.5%CWE-22
A vulnerability was detected in HerikLyma CPPWebFramework up to 3.1. This issue affects some unknown processing. Performing a manipulation results in path traversal. Remote exploitation of the attack is possible. The exploit is now public and may be used. The project was informed of the problem early through an issue report but has not responded yet.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P
Produtos afetados
HerikLyma · CPPWebFramework
PoCs públicas encontradas1
cve_referencegithub.com/HerikLyma/CPPWebFramework/issues/40#issue-4118436068não verificado
⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://github.com/HerikLyma/CPPWebFramework/https://github.com/HerikLyma/CPPWebFramework/issues/40https://github.com/HerikLyma/CPPWebFramework/issues/40#issue-4118436068https://vuldb.com/submit/785952https://vuldb.com/vuln/355426https://vuldb.com/vuln/355426/cti