3 matches found
CVE-2026-22786
Gin-vue-admin (github.com/flipped-aurora/gin-vue-admin)
CVE-2026-22786 The arbitrary file upload vulnerability caused by path traversal is on github.com/flipped-aurora/gin-vue-admin
Gin-vue-admin is a backstage management system based on vue and gin. Gin-vue-admin = v2.8.7 has a path traversal vulnerability in the breakpoint resume upload functionality. Attacker can upload any files on any directory. In the breakpointcontinue.go file, the MakeFile function accepts a fileName...
CVE-2026-22786
creationtimestamp| type| source ---|---|--- 2026-01-11 14:44:05+00:00| published-proof-of-concept| https://github.com/flipped-aurora/gin-vue-admin/security/advisories/GHSA-3558-j79f-vvm6 2026-01-12 23:03:01+00:00| published-proof-of-concept| Telegram/r1WVj1DWEYgy6-PsI-eM62JB77qRC4LeAFuyHTjHJQG2Ea...