CVE-2026-26833 | thumbler up to 1.1.2 thumbnail size os command injection

Inserito da Angelo Barbosa | Mar 25, 2026 | CVE

A vulnerability marked as critical has been reported in thumbler up to 1.1.2. Affected by this issue is the function thumbnail. The manipulation of the argument size leads to os command injection.

This vulnerability is traded as CVE-2026-26833. Access to the local network is required for this attack to succeed. There is no exploit available.

CVE-2026-26833 | thumbler up to 1.1.2 thumbnail size os command injection

Post correlati

CVE-2024-39651 | WPWeb WooCommerce PDF Vouchers Plugin up to 4.9.4 on WordPress path traversal

CVE-2025-8532 | Bimser Solution Software Trade eBA Document and Workflow Management System 6.7.164/6.7.165 authorization

CVE-2025-12580 | SMS Plugin up to 1.1.8 on WordPress paged cross site scripting

CVE-2024-20309 | Cisco IOS XE up to 17.6.6 AUX unknown vulnerability (cisco-sa-aux-333WBz8f)