CVE-2026-23521 | Traccar up to 6.11.1 Device Image uniqueId path traversal (GHSA-rc28-cvfc-chqr)

Inserito da Angelo Barbosa | Feb 24, 2026 | CVE

A vulnerability described as critical has been identified in Traccar up to 6.11.1. Affected by this issue is some unknown functionality of the component Device Image Handler. The manipulation of the argument uniqueId results in path traversal.

This vulnerability is identified as CVE-2026-23521. The attack can be executed remotely. There is not any exploit available.

CVE-2026-23521 | Traccar up to 6.11.1 Device Image uniqueId path traversal (GHSA-rc28-cvfc-chqr)

Post correlati

CVE-2024-1940 | themefusecom Brizy Plugin up to 2.4.41 on WordPress cross site scripting

CVE-2023-43122 | Samsung Exynos up to 2200 Bootloader information disclosure

CVE-2025-0840 | GNU Binutils up to 2.43 binutils/objdump.c disassemble_bytes buf stack-based overflow

CVE-2023-47560 | QNAP QuMagie prior 2.2.1 command injection (qsa-23-23)