CVE-2026-46703 | boxlite-ai boxlite up to 0.8.x path traversal (GHSA-f396-4rp4-7v2j)

Inserito da Angelo Barbosa | Giu 11, 2026 | CVE

A vulnerability, which was classified as critical, has been found in boxlite-ai boxlite up to 0.8.x. Impacted is an unknown function. Performing a manipulation results in path traversal.

This vulnerability is reported as CVE-2026-46703. The attack is possible to be carried out remotely. No exploit exists.

It is advisable to upgrade the affected component.

CVE-2026-46703 | boxlite-ai boxlite up to 0.8.x path traversal (GHSA-f396-4rp4-7v2j)

Post correlati

CVE-2025-5243 | SMG Information Portal prior 13.06.2025 unrestricted upload

CVE-2024-54452 | Kurmi Provisioning Suite up to 7.9.0.34/7.10.0.18 logsSys.do path traversal

CVE-2025-40976 | WorkDo TicketGo POST Request /ticketgo-saas/home Description cross site scripting

CVE-2020-26308 | ansman validate.js up to 0.13.1 redos (ID 342)