CVE-2026-33166 | allure-framework allure2 up to 2.37.x path traversal (GHSA-64hm-gfwq-jppw)

Inserito da Angelo Barbosa | Mar 20, 2026 | CVE

A vulnerability marked as critical has been reported in allure-framework allure2 up to 2.37.x. This issue affects some unknown processing. Performing a manipulation results in path traversal.

This vulnerability is known as CVE-2026-33166. Remote exploitation of the attack is possible. No exploit is available.

It is suggested to upgrade the affected component.

CVE-2026-33166 | allure-framework allure2 up to 2.37.x path traversal (GHSA-64hm-gfwq-jppw)

Post correlati

CVE-2024-5571 | wpdevteam EmbedPress Plugin up to 4.0.1 on WordPress cross site scripting

CVE-2026-30934 | gtsteffaniak filebrowser up to 1.2.1-stable/1.3.0-beta /public/share/ cross site scripting

CVE-2024-20465 | Cisco IOS 15.2(8)E2/15.2(8)E3/15.2(8)E4/15.2(8)E5 Access Control List access control (cisco-sa-repacl-9eXgnBpD)

CVE-2023-33108 | Qualcomm WSA8835 Graphics Driver memory corruption