Security Advisory

CVE-2026-40184

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-04-10 19:39:32

Last updated 2026-04-13 16:12:51

Assigner GitHub_M

State PUBLISHED

Description

TREK is a collaborative travel planner. Prior to 2.7.2, TREK served uploaded photos without requiring authentication. This vulnerability is fixed in 2.7.2.

← Browse all CVEs View on cve.org ↗