Security Advisory

CVE-2026-2216

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-09 05:02:06

Last updated 2026-02-23 09:56:58

Assigner VulDB

State PUBLISHED

Description

A flaw has been found in rachelos WeRSS we-mp-rss up to 1.4.8. Impacted is the function download_export_file of the file apis/tools.py. Executing a manipulation of the argument filename can lead to path traversal. The attack can be launched remotely. The exploit has been published and may be used.

← Browse all CVEs View on cve.org ↗