PT-2026-31908 · Unknown · Falkordb Browser
Ramesh Gunnam
·
Published
2026-04-10
·
Updated
2026-04-20
·
CVE-2026-6057
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
FalkorDB Browser version 1.9.3
Description
The FalkorDB Browser application is susceptible to an unauthenticated path traversal flaw within its file upload API. This allows remote attackers to write arbitrary files, potentially leading to remote code execution. The vulnerability does not require authentication.
Recommendations
Update to a newer version that contains a fix for this vulnerability.
Fix
RCE
Path traversal
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Falkordb Browser