CVE-2026-16088 | halo-dev halo up to 2.24.2 Files Backup Endpoint MigrationEndpoint.java download path traversal (Issue 10064)

SecurityVulns

A vulnerability was found in halo-dev halo up to 2.24.2. It has been classified as critical. Affected by this vulnerability is the function Download of the file MigrationEndpoint.java of the component Files Backup Endpoint. Performing a manipulation results in path traversal.

This vulnerability is reported as CVE-2026-16088. The attack is possible to be carried out remotely. Moreover, an exploit is present.VulDB Recent EntriesRead More