CVE-2026-38360 | fohrloop dash-uploader up to 0.1.0/0.7.0a2 httprequesthandler.py aseHttpRequestHandler.get_temp_root path traversal

A vulnerability classified as critical was found in fohrloop dash-uploader up to 0.1.0/0.7.0a2. Affected is the function aseHttpRequestHandler.get_temp_root of the file dash_uploader/httprequesthandler.py. Such manipulation leads to path traversal.

This vulnerability is documented as CVE-2026-38360. The attack can be executed remotely. There is not any exploit available.VulDB Recent EntriesRead More