CVE-2026-0847

Name of the Vulnerable Software and Affected Versions NLTK versions up to and including 3.9.2

Description A flaw exists in NLTK that permits arbitrary file reading through path traversal in several CorpusReader classes, such as WordListCorpusReader, TaggedCorpusReader, and BracketParseCorpusReader. The software does not adequately sanitize or validate file paths, which allows attackers to navigate directories and access sensitive files on the server. This is especially concerning when user-provided file inputs are processed, for example, in machine learning APIs, chatbots, or NLP pipelines. Exploiting this issue can result in unauthorized access to sensitive files, including system files, SSH private keys, and API tokens, and could potentially lead to remote code execution when combined with other weaknesses.

Recommendations Update NLTK to a version newer than 3.9.2.