CVE-2026-22707 | Strapi Upload Plugin prior 5.33.3 Content API unrestricted upload

A vulnerability marked as critical has been reported in Strapi Upload Plugin. Impacted is an unknown function of the component Content API. Performing a manipulation results in unrestricted upload.

This vulnerability is known as CVE-2026-22707. Remote exploitation of the attack is possible. No exploit is available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More