CVE-2026-45088 | hahwul dalfox up to 2.12.x custom-payload-file Fieldmode dalfox.Initialize file inclusion (GHSA-35wr-x7v6-9fv2)

A vulnerability categorized as problematic has been discovered in hahwul dalfox up to 2.12.x. Affected is the function dalfox.Initialize of the component custom-payload-file Fieldmode. The manipulation results in file inclusion.

This vulnerability is identified as CVE-2026-45088. The attack can be executed remotely. There is not any exploit available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More