PT-2026-40946 · Stigqter · Stigqter
Bitwize-Music
·
Published
2026-05-14
·
Updated
2026-05-14
·
CVE-2026-42881
CVSS v4.0
8.4
High
| Vector | AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
STIGQter versions 0.1.2 through 1.2.6
Description
An attacker can achieve local code execution (LCE) with the privileges of the user running the software. This occurs when a victim opens a malicious
.stigqter file and executes the Export HTML action.Recommendations
Update to version 1.2.7.
Exploit
Fix
Path traversal
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Stigqter