CVE-2026-26985 | aces Loris up to 26.0.4/27.0.1 electrophysiogy_browser path traversal (GHSA-g3pp-rqvq-xxhp)

A vulnerability described as critical has been identified in aces Loris up to 26.0.4/27.0.1. The affected element is the function electrophysiogy_browser. Such manipulation leads to path traversal.

This vulnerability is referenced as CVE-2026-26985. It is possible to launch the attack remotely. No exploit is available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More