Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:30 p.m.10 views

CVE-2026-42598

Pode is a Cross-Platform PowerShell web framework for creating REST APIs, Web Sites, and TCP/SMTP servers. From 2.4.0, to before 2.13.0, when requesting content from a Static Route, it was possible to request paths such as http://localhost:8080/c:/Windows/System32/drivers/etc/hosts and have the...

6.9CVSS5.5AI score0.00325EPSS
Exploits0References1
NVD
NVD
added 2026/05/14 6:16 p.m.14 views

CVE-2026-42598

Pode is a Cross-Platform PowerShell web framework for creating REST APIs, Web Sites, and TCP/SMTP servers. From 2.4.0, to before 2.13.0, when requesting content from a Static Route, it was possible to request paths such as http://localhost:8080/c:/Windows/System32/drivers/etc/hosts and have the...

6.9CVSS0.00325EPSS
Exploits0References2
OSV
OSV
added 2026/05/14 6:6 p.m.5 views

CVE-2026-42598 Pode: Directory Traversal is possible on Static Routes

Pode is a Cross-Platform PowerShell web framework for creating REST APIs, Web Sites, and TCP/SMTP servers. From 2.4.0, to before 2.13.0, when requesting content from a Static Route, it was possible to request paths such as http://localhost:8080/c:/Windows/System32/drivers/etc/hosts and have the...

6.9CVSS6AI score0.00325EPSS
Exploits0References4
CVE
CVE
added 2026/05/14 6:6 p.m.36 views

CVE-2026-42598

CVE-2026-42598 affects Pode, a cross‑platform PowerShell web framework. From version 2.4.0 up to, but not including, 2.13.0, the Static Route content fetch could be abused to perform a directory traversal (e.g., requesting http://localhost:8080/c:/Windows/System32/drivers/etc/hosts) and return lo...

6.9CVSS5.8AI score0.00325EPSS
Exploits0References2
Rows per page
Query Builder