CVE-2026-41231

Name of the Vulnerable Software and Affected Versions Froxlor versions prior to 2.3.6

Description The DataDump.add() function constructs the export destination path using user-supplied input but fails to pass the $fixed homedir parameter to FileDir::makeCorrectDir(). This omission bypasses symlink validation. When the ExportCron process runs with root privileges, it executes chown -R on the resolved symlink target, which allows a customer to take ownership of arbitrary directories on the system.

Recommendations Update to version 2.3.6.