CVE-2026-45233 | danpros htmly up to 3.1.1 Admin Autosave Endpoint admin.php file_exists oldfile path traversal

A vulnerability, which was classified as critical, was found in danpros htmly up to 3.1.1. This affects the function file_exists of the file admin.php of the component Admin Autosave Endpoint. Executing a manipulation of the argument oldfile can lead to path traversal.

This vulnerability is tracked as CVE-2026-45233. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More