216.73.217.22

CVE-2026-40163

· Published 10/04/2026 18:16 · Modified 10/04/2026 18:16

Labels: CVE-2026-40163 2026-04-10CVE-2026-40163CWE-22[email protected]

Essential information

Published
10/04/2026 18:16
Modified
10/04/2026 18:16
Author
Creator
CVSS
8.2 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N

CVSS metrics

Description

Saltcorn is an extensible, open source, no-code database application builder. Prior to 1.4.5, 1.5.5, and 1.6.0-beta.4, the POST /sync/offline_changes endpoint allows an unauthenticated attacker to create arbitrary directories and write a changes.json file with attacker-controlled JSON content anywhere on the server filesystem. The GET /sync/upload_finished endpoint allows an unauthenticated attacker to list arbitrary directory contents and read specific JSON files. This vulnerability is fixed in 1.4.5, 1.5.5, and 1.6.0-beta.4.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
saltcorn / saltcorn cpe:2.3:a:saltcorn:saltcorn:<1.4.5:*:*:*:*:*:*:*
saltcorn / saltcorn cpe:2.3:a:saltcorn:saltcorn:<1.5.5:*:*:*:*:*:*:*
saltcorn / saltcorn cpe:2.3:a:saltcorn:saltcorn:<1.6.0-beta.4:*:*:*:*:*:*:*

References