CVE-2026-28792 | tinacms up to 2.1.7 path traversal (GHSA-8pw3-9m7f-q734)

Inserito da Angelo Barbosa | Mar 12, 2026 | CVE

A vulnerability categorized as critical has been discovered in tinacms up to 2.1.7. This impacts an unknown function. Executing a manipulation can lead to path traversal.

This vulnerability is tracked as CVE-2026-28792. The attack can be launched remotely. No exploit exists.

It is advisable to upgrade the affected component.

CVE-2026-28792 | tinacms up to 2.1.7 path traversal (GHSA-8pw3-9m7f-q734)

Post correlati

CVE-2024-38534 | OISF Suricata up to 7.0.5 Modbus stream.reassembly.depth allocation of resources

CVE-2024-40689 | IBM InfoSphere Information Server 11.7 sql injection (XFDB-297719)

CVE-2024-10866 | Export Import Menus Plugin up to 1.9.1 on WordPress authorization

CVE-2024-52965 | Fortinet FortiOS/FortiProxy API missing critical step in authentication (FG-IR-24-511)