CVE-2026-5258 in Sanster IOPaint情報

要約 (英語)

A vulnerability was found in Sanster IOPaint 1.5.3. Impacted is the function _get_file of the file iopaint/file_manager/file_manager.py of the component File Manager. Performing a manipulation of the argument filename results in path traversal. The attack is possible to be carried out remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

公開

2026年04月01日

エントリ

VulDB provides additional information and datapoints for this CVE:

識別子	脆弱性	CWE	悪用可	対策	CVE
354448	Sanster IOPaint File Manager file_manager.py _get_file ディレクトリトラバーサル	22	概念実証	未定義	CVE-2026-5258

説明

CPE

CWE

CVSS

エクスプロイト

履歴

差分

リンクする

脅威インテリジェンス

API JSON

API XML

API CSV

◂ 前概要次 ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!