CVE-2026-4307 | frdel/agent0ai agent-zero 0.9.7-10 python/helpers/files.py get_abs_path path traversal

Inserito da Angelo Barbosa | Mar 16, 2026 | CVE

A vulnerability was found in frdel/agent0ai agent-zero 0.9.7-10. It has been declared as critical. The impacted element is the function get_abs_path of the file python/helpers/files.py. The manipulation results in path traversal.

This vulnerability is identified as CVE-2026-4307. The attack can be executed remotely. Additionally, an exploit exists.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-4307 | frdel/agent0ai agent-zero 0.9.7-10 python/helpers/files.py get_abs_path path traversal

Post correlati

CVE-2024-34137 | Adobe Illustrator up to 27.9.4/28.5 null pointer dereference (apsb24-45)

CVE-2024-11997 | code-projects Farmacia 1.0 /vendas.php notaFiscal cross site scripting

CVE-2025-11657 | ProjectsAndPrograms School Management System up to 6b6fae5426044f89c08d0dd101c7fa71f9042a59 /assets/createNotice.php File unrestricted upload

CVE-2024-8388 | Mozilla Firefox up to 129.x Notifications ui layer