CVE-2026-31975 | siteboon claude-code-ui prior 1.25.0 Websocket os command injection

Inserito da Angelo Barbosa | Mar 11, 2026 | CVE

A vulnerability, which was classified as critical, has been found in siteboon claude-code-ui. Affected by this issue is some unknown functionality of the component Websocket Handler. The manipulation leads to os command injection.

This vulnerability is documented as CVE-2026-31975. The attack can be initiated remotely. There is not any exploit available.

It is advisable to upgrade the affected component.

CVE-2026-31975 | siteboon claude-code-ui prior 1.25.0 Websocket os command injection

Post correlati

CVE-2025-13686 | IBM DataStage on Cloud Pak for Data up to 5.3.0 os command injection

CVE-2024-38346 | Apache CloudStack up to 4.18.2.0/4.19.0.1 Service Port 9090 code injection

CVE-2025-10358 | Wavlink WL-WN578W2 221110 /cgi-bin/wireless.cgi sub_404850 delete_list os command injection

CVE-2024-43854 | Linux Kernel up to 6.1.102/6.6.43/6.10.2 block bio_integrity_prep initialization