CVE-2026-45230 | DumbWareio DumbAssets up to 1.0.11 /api/delete-file path traversal

Inserito da Angelo Barbosa | Mag 18, 2026 | CVE

A vulnerability was found in DumbWareio DumbAssets up to 1.0.11. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /api/delete-file. Such manipulation leads to path traversal.

This vulnerability is documented as CVE-2026-45230. The attack can be executed remotely. There is not any exploit available.

Applying a patch is advised to resolve this issue.

CVE-2026-45230 | DumbWareio DumbAssets up to 1.0.11 /api/delete-file path traversal

Post correlati

CVE-2024-10345 | Helix Core up to 2024.1 shutdown resource consumption

CVE-2024-57154 | dts-shop 0.0.1-SNAPSHOT /admin/auth/index access control

CVE-2026-5121 | libarchive on 32-bit ISO9660 Image Parser heap-based overflow

CVE-2023-49096 | Jellyfin up to 10.8.12 /Videos//stream argument injection