CVE-2026-1066 | kalcaddle kodbox up to 1.61.10 Compression /?explorer/index/zip command injection

Inserito da Angelo Barbosa | Gen 16, 2026 | CVE

A vulnerability categorized as critical has been discovered in kalcaddle kodbox up to 1.61.10. This issue affects some unknown processing of the file /?explorer/index/zip of the component Compression Handler. The manipulation results in command injection.

This vulnerability is cataloged as CVE-2026-1066. The attack may be launched remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-1066 | kalcaddle kodbox up to 1.61.10 Compression /?explorer/index/zip command injection

Post correlati

CVE-2025-60876 | BusyBox wget up to 1.3.7 HTTP Request injection

CVE-2024-47031 | Google Android ABL Privilege Escalation

CVE-2025-8690 | Simple Responsive Slider Plugin up to 2.0 on WordPress cross site scripting

CVE-2025-10843 | Reservation Online Hotel Reservation System 1.0 paypalpayout.php confirm sql injection