CNNVD-202601-2913 Information

CNNVD ID

CNNVD-202601-2913

Related CVE

CVE-2026-1066

• CNNVD Published: 2026-01-17

Description (Chinese)

kodbox是warlee个人开发者的一个网络文件管理器。 kodbox 1.61.10及之前版本存在命令注入漏洞，该漏洞源于对文件/?explorer/index/zip中组件Compression Handler的错误操作，可能导致命令注入攻击。

Description (English)

kodbox is a web file manager for individual warlee developers. kodbox 1.61.10 and previous versions contain a command-injecting loophole, which stems from the wrong operation of the component Compression Handler in the document/?explorer/index/zip, which may result in an order-injecting attack.

Hazard Level

High

Vulnerability Type

命令注入

Affected Vendor

个人开发者

Published

2026-01-17

Last Modified

2026-02-24

References

https://github.com/DReazer/CV3/blob/main/Krce.md https://vuldb.com/?submit.731436 https://vuldb.com/?ctiid.341665 https://vuldb.com/?id.341665 https://access.redhat.com/security/cve/cve-2026-1066