CVE-2026-7059 | 666ghj MiroFish up to 0.1.2 Query Parameter simulation.py get_simulation_posts Platform path traversal (Issue 489)

A vulnerability classified as critical has been found in 666ghj MiroFish up to 0.1.2. This affects the function get_simulation_posts of the file backend/app/api/simulation.py of the component Query Parameter Handler. Performing a manipulation of the argument Platform results in path traversal.

This vulnerability is identified as CVE-2026-7059. The attack can be initiated remotely. Additionally, an exploit exists.VulDB Recent EntriesRead More