Lucene search
K

CVE-2026-45230

πŸ—“οΈΒ 18 May 2026Β 18:06:56Reported byΒ VulnCheckTypeΒ 
cve
Β cve
πŸ”—Β web.nvd.nist.govπŸ‘Β 14Β Views🌐 WEB

Path traversal in POST /api/delete-file allows unauthenticated deletion of critical files via filesToDelete.

Related
Detection
Affected
Refs
Paths
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2026-45230
18 May 202618:06
–attackerkb
Circl
CVE-2026-45230
18 May 202619:03
–circl
CNNVD
DumbAssets θ·―εΎ„ιεŽ†ζΌζ΄ž
18 May 202600:00
–cnnvd
Cvelist
CVE-2026-45230 DumbAssets 1.0.11 Path Traversal File Deletion via /api/delete-file
18 May 202618:06
–cvelist
EUVD
EUVD-2026-30790
18 May 202618:06
–euvd
NVD
CVE-2026-45230
18 May 202618:17
–nvd
Positive Technologies
PT-2026-41715
18 May 202600:00
–ptsecurity
RedhatCVE
CVE-2026-45230
5 Jun 202619:18
–redhatcve
Vulnrichment
CVE-2026-45230 DumbAssets 1.0.11 Path Traversal File Deletion via /api/delete-file
18 May 202618:06
–vulnrichment
Vulners
Node
dumbwareiodumbassetsRange0–1.0.11
[
  {
    "defaultStatus": "affected",
    "vendor": "DumbWareio",
    "product": "DumbAssets",
    "repo": "https://github.com/DumbWareio/DumbAssets",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "versionType": "semver",
        "lessThanOrEqual": "1.0.11"
      }
    ]
  }
]
ParameterPositionPathDescriptionCWE
filesToDeleterequest body/api/delete-filePath traversal via POST /api/delete-file allowing unauthenticated deletion of arbitrary files using ../ sequences in filesToDelete parameterCWE-22

Data

Build on a solid foundation withΒ Vulners data

WeΒ provide theΒ essential building blocks forΒ cybersecurity solutions withΒ comprehensive, structured, andΒ constantly updated vulnerability andΒ exploits data

Api

Power your application withΒ Vulners API

The Vulners REST API offers reliable, high-performance access toΒ vulnerabilityΒ intelligence, withΒ 99.9%Β SLAΒ uptime andΒ CDN-backed data delivery forΒ seamlessΒ global access

App

Assess and manage vulnerabilities withΒ VulnersΒ tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

23 Jun 2026 16:16Current
5.9Medium risk
Vulners AI Score5.9
CVSS 48.8
CVSS 3.19.1
EPSS0.00626
SSVC
14