7.5
CVE-2026-43891
- EPSS 0.35%
- Veröffentlicht 12.05.2026 16:56:33
- Zuletzt bearbeitet 15.05.2026 14:20:12
- Quelle security-advisories@github.com
- CVE-Watchlists
- Unerledigt
Loginchangedetection.io: Arbitrary Local File Read via crafted backup restore
changedetection.io is a free open source web page change detection tool. Prior to 0.55.1, the vulnerability is caused by trusting attacker-controlled snapshot paths restored from backup files. The vulnerable flow starts in the backup restore logic. When a backup ZIP is restored, the application extracts the archive and copies each restored watch UUID directory directly into the live datastore using shutil.copytree(entry.path, dst_dir). This preserves attacker-controlled files inside the restored watch directory, including history.txt. After restore, the application parses history.txt in the watch history property and returns the contents of the targeted local file. This vulnerability is fixed in 0.55.1.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Webtechnologies ≫ Changedetection Version < 0.55.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.35% | 0.271 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| security-advisories@github.com | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
|
CWE-73 External Control of File Name or Path
The product allows user input to control or influence paths or file names that are used in filesystem operations.
https://github.com/pocket-id/pocket-id/security/advisories/GHSA-w6p7-2fxx-4f44
https://github.com/dgtlmoon/changedetection.io/security/advisories/GHSA-8757-69j2-hx56