B3NCLOUD ARTICLE INTELLIGENCE

ARTICLEVIEW

Zurück zu News
cvefeed.io
RISK: Mittel (4.0)

CVE-2026-56258 - Crawl4AI - Arbitrary File Write via output_path Symlink and TOCTOU

CVE ID :CVE-2026-56258 Published : June 23, 2026, 12:12 p.m. | 57 minutes ago Description :Crawl4AI before 0.8.8 contains an arbitrary file write vulnerability in the screenshot and PDF endpoints that allows unauthenticated attackers to write files outside the intended directory via symlink...

#Sicherheitslücke
Original-Artikel öffnen Zurück zur Übersicht

VERWANDTEARTIKEL

Cordyceps Supply Chain Flaw Impacting Code Repositories at thousands of Organizations

2026-06-23 Kritisch

CVE-2026-12249 in Canonical ADSys: MITM ermöglicht Manipulation des System-Trust-Stores

2026-06-23 Hoch

CVE-2026-54892 - Plug: quadratic-time decoding of nested query/body parameters enables denial of service

2026-06-23 Mittel

CVE-2026-56784 - OpenRemote Manager - Cross-Tenant IDOR in Bulk Alarm Deletion

2026-06-23 Mittel

CVE-2026-56322 - Capgo - Information Disclosure via Unauthenticated /updates defaultChannel Parameter

2026-06-23 Mittel

CVE-2026-56315 - picklescan - Remote Code Execution via Unblocked Standard Library Modules

2026-06-23 Mittel