CVE-2026-42866 | Alfredredbird tookie-osint up to 4.1fix modules/modules.py write_txt/write_csv/write_json/scan_file path traversal

Inserito da Angelo Barbosa | Mag 11, 2026 | CVE

A vulnerability, which was classified as critical, has been found in Alfredredbird tookie-osint up to 4.1fix. This affects the function write_txt/write_csv/write_json/scan_file of the file modules/modules.py. This manipulation causes path traversal.

This vulnerability is registered as CVE-2026-42866. The attack needs to be launched locally. No exploit is available.

It is advisable to upgrade the affected component.

CVE-2026-42866 | Alfredredbird tookie-osint up to 4.1fix modules/modules.py write_txt/write_csv/write_json/scan_file path traversal

Post correlati

CVE-2026-34291 | Oracle HTTP Server 12.2.1.4.0/14.1.2.0.0 Core improper authorization

CVE-2024-4540 | Red Hat Keycloak/Single Sign-On HTTP Response KC_RESTART information disclosure

CVE-2026-33344 | dagu-org dagu up to 2.3.0 API Endpoint generateFilepath path traversal

CVE-2024-22334 | IBM UrbanCode Deploy/DevOps Deploy permission assignment (XFDB-279974)