CVE-2026-54055 | kovidgoyal kitty up to 0.47.1 os.open link following (GHSA-q446-x7q6-vcxh)

Inserito da Angelo Barbosa | Giu 12, 2026 | CVE

A vulnerability identified as critical has been detected in kovidgoyal kitty up to 0.47.1. This issue affects the function os.open. The manipulation leads to link following.

This vulnerability is referenced as CVE-2026-54055. The attack can only be performed from a local environment. No exploit is available.

You should upgrade the affected component.

CVE-2026-54055 | kovidgoyal kitty up to 0.47.1 os.open link following (GHSA-q446-x7q6-vcxh)

Post correlati

CVE-2026-4533 | code-projects Simple Food Ordering System 1.0 all-tickets.php Status sql injection

CVE-2023-49539 | Book Store Management System 1.0 category cross site scripting

CVE-2024-45006 | Linux Kernel up to 6.10.6 xhci usb_ep0_reinit null pointer dereference

CVE-2024-7845 | SourceCodester Online Graduate Tracer System 1.0 fetch_it.php request sql injection