PT-2026-60931 · Halo Dev · Halo

·

CVE-2026-16088

·

Publicado

2026-07-18

·

Atualizado

2026-07-18

CVSS v2.0

5.8

Média

VetorAV:N/AC:L/Au:M/C:P/I:P/A:P
A vulnerability was detected in halo-dev halo up to 2.24.2. Affected by this vulnerability is the function Download of the file MigrationEndpoint.java of the component Files Backup Endpoint. Performing a manipulation results in path traversal. The attack is possible to be carried out remotely. The exploit is now public and may be used.

Exploit

Correção

Path traversal

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

Enumeração de Fraquezas

Identificadores relacionados

CVE-2026-16088

Produtos afetados

Halo