CVE-2026-24469 | frustratedProton http-server up to 1.0 HTTP Request handleRequest filename path traversal (GHSA-qp54-6gfq-3gff)

Inserito da Angelo Barbosa | Gen 24, 2026 | CVE

A vulnerability classified as critical was found in frustratedProton http-server up to 1.0. Impacted is the function RequestHandler::handleRequest of the component HTTP Request Handler. Such manipulation of the argument filename leads to path traversal.

This vulnerability is documented as CVE-2026-24469. The attack can be executed remotely. There is not any exploit available.

CVE-2026-24469 | frustratedProton http-server up to 1.0 HTTP Request handleRequest filename path traversal (GHSA-qp54-6gfq-3gff)

Post correlati

CVE-2024-34436 | SKT Themes SKT Addons for Elementor Plugin up to 1.8 on WordPress cross site scripting

CVE-2025-21107 | Dell NetWorker up to 19.9/19.10.0.6/19.11.0.2 unquoted search path (dsa-2025-064)

CVE-2025-4992 | Dassault Systèmes Service Process Engineer Items Management Service cross site scripting

CVE-2024-44308 | Apple iOS/iPadOS on Intel Web Content Remote Code Execution