CVE-2026-29065

High CVSS: 8.8

changedetection.io is a free open source web page change detection tool. Prior to version 0.54.4, a Zip Slip vulnerability in the backup restore functionality allows arbitrary file overwrite via path traversal in uploaded ZIP archives. This issue has been patched in version 0.54.4.

Vendor

Webtechnologies

Product

Changedetection

CWE

CWE-22

Yayın Tarihi

2026-03-06 07:16:02

Güncelleme

2026-03-10 20:00:57

Source Identifier

security-advisories@github.com

KEV Date Added

Kategoriler

CWE-22 Changedetection HIGH Webtechnologies 2026

Referanslar

https://github.com/dgtlmoon/changedetection.io/commit/1d7d812eb0faab37042246e2fbce04f29bb1b3aa https://github.com/dgtlmoon/changedetection.io/releases/tag/0.54.4 https://github.com/dgtlmoon/changedetection.io/security/advisories/GHSA-25g8-2mcf-fcx9

Benzer Kayıtlar

High

CVE-2026-33981

changedetection.io is a free open source web page change detection tool. Prior to 0.54.7, the `jq:` and `jqraw:` include…

Medium

CVE-2026-29038

changedetection.io is a free open source web page change detection tool. Prior to version 0.54.4, there is a reflected c…

High

CVE-2026-29039

changedetection.io is a free open source web page change detection tool. Prior to version 0.54.4, the changedetection.io…

Medium

CVE-2026-27645

changedetection.io is a free open source web page change detection tool. In versions prior to 0.54.1, the RSS single-wat…

High

CVE-2026-27696

changedetection.io is a free open source web page change detection tool. In versions prior to 0.54.1, changedetection.io…

Medium

CVE-2026-25527

changedetection.io is a free open source web page change detection tool. In versions prior to 0.53.2, the `/static//` ro…