CVE-2026-30117 | scalar astro 0.1.13 Proxy Endpoint scalar_url unrestricted upload

Inserito da Angelo Barbosa | Mag 19, 2026 | CVE

A vulnerability, which was classified as critical, has been found in scalar astro 0.1.13. The impacted element is an unknown function of the component Proxy Endpoint. Performing a manipulation of the argument scalar_url results in unrestricted upload.

This vulnerability is identified as CVE-2026-30117. The attack can be initiated remotely. There is not any exploit available.

CVE-2026-30117 | scalar astro 0.1.13 Proxy Endpoint scalar_url unrestricted upload

Post correlati

CVE-2024-50130 | Linux Kernel up to 6.6.58/6.11.5 netfilter __nf_unregister_net_hook use after free (f41bd93b3e05/d0d7939543a1/1230fe7ad397)

CVE-2024-9284 | TP-LINK TL-WR841ND up to 20240920 popupSiteSurveyRpm.htm ssid stack-based overflow

CVE-2024-6465 | WP Links Page up to 4.9.5 on WordPress Image authorization

CVE-2025-54164 | QNAP QTS/QuTS hero out-of-bounds (qsa-25-50)