CVE-2026-7784 | RTGS2017 NagaAgent up to 5.1.0 Skills Endpoint extensions.py Name path traversal (Issue 311)

A vulnerability was found in RTGS2017 NagaAgent up to 5.1.0 and classified as critical. This issue affects some unknown processing of the file apiserver/routes/extensions.py of the component Skills Endpoint. Such manipulation of the argument Name leads to path traversal.

This vulnerability is referenced as CVE-2026-7784. It is possible to launch the attack remotely. Furthermore, an exploit is available.

The project was informed of the problem early through an issue report but has not responded yet.VulDB Recent EntriesRead More