CVE-2026-54563 | Cloudreve up to 4.16.0 WebDav pkg/webdav/webdav.go %2e path traversal

SecurityVulns

A vulnerability classified as critical was found in Cloudreve up to 4.16.0. Impacted is an unknown function of the file pkg/webdav/webdav.go of the component WebDav. Such manipulation of the argument %2e leads to path traversal.

This vulnerability is traded as CVE-2026-54563. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More