CVE-2026-6591 | ComfyUI up to 0.13.0 LoadImage Node folder_paths.py folder_paths.get_annotated_filepath Name path traversal

A vulnerability was found in ComfyUI up to 0.13.0. It has been rated as critical. Affected is the function folder_paths.get_annotated_filepath of the file folder_paths.py of the component LoadImage Node. This manipulation of the argument Name causes path traversal.

This vulnerability is registered as CVE-2026-6591. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

The vendor was contacted early about this disclosure but did not respond in any way.VulDB Recent EntriesRead More