CVE-2026-21857 | REDAXO up to 5.20.1 Backup EXPDIR path traversal (GHSA-824x-88xg-cwrv)

January 8, 2026 Yanac

A vulnerability categorized as problematic has been discovered in REDAXO up to 5.20.1. The impacted element is an unknown function of the component Backup Handler. The manipulation of the argument EXPDIR results in path traversal: ‘../filedir’.

This vulnerability is cataloged as CVE-2026-21857. The attack may be launched remotely. There is no exploit available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More