CVE-2026-45089 | hahwul dalfox up to 2.12.x REST API Server Mode file inclusion (GHSA-8hf9-3q64-q2qf)

A vulnerability was found in hahwul dalfox up to 2.12.x. It has been classified as critical. The impacted element is an unknown function of the component REST API Server Mode. Performing a manipulation results in file inclusion.

This vulnerability was named CVE-2026-45089. The attack may be initiated remotely. There is no available exploit.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More