3 matches found
aurora-cycler-manager (>=0.10.0 <=0.11.4), fusion-tools (>=3.6.19 <=3.6.90) +9 more potentially affected by CVE-2026-38360 via dash-uploader (>=0.6.0 <=0.7.0a2)
dash-uploader PYPI version =0.6.0, =0.10.0, =3.6.19, =0.0.11, =0.0.30, =0.2.4b0, =0.0.50.0, =0.1.7.3, =2.0.1, =0.2.0, =0.4.1 Source cves: CVE-2026-38360 Source advisory: OSV:GHSA-3RF6-X59V-5JFV...
CVE-2026-38360
Directory Traversal vulnerability in fohrloop dash-uploader v.0.1.0 through v.0.7.0a2 allows a remote attacker to execute arbitrary code via the dashuploader/httprequesthandler.py, aseHttpRequestHandler.gettemproot, BaseHttpRequestHandler.post components...
CVE-2026-38360
creationtimestamp| type| source ---|---|--- 2026-05-07 19:00:14+00:00| seen| Telegram/PzhmRpnH0GKl-gQSVtV4RydjOIkDAHQ-MCr1tu85IjwQYE 2026-05-07 23:00:14+00:00| seen| Telegram/oaX1QMYGY6U2VLr3GbuHtJDEm63hpjXfJZtZ3v8CfS2o2Y 2026-05-08 03:00:06+00:00| seen|...