What is CVE-2026-40163 — Path Traversal in Saltcorn?

CVE-2026-40163 is a Path Traversal vulnerability affecting Saltcorn versions 1.4.0 through 1.6.0-beta.3, allowing unauthenticated attackers to write files to the server's filesystem.

Am I affected by CVE-2026-40163 in Saltcorn?

You are affected if you are running Saltcorn versions 1.4.0 through 1.6.0-beta.3. Upgrade to 1.4.5 or later to mitigate the risk.

How do I fix CVE-2026-40163 in Saltcorn?

Upgrade Saltcorn to version 1.4.5 or later. If immediate upgrade is not possible, implement file system access controls and consider WAF rules.

Is CVE-2026-40163 being actively exploited?

While no public exploits are currently known, the ease of exploitation makes it a potential target and warrants immediate attention.

Where can I find the official Saltcorn advisory for CVE-2026-40163?

Refer to the Saltcorn security advisory for detailed information and updates: [https://saltcorn.com/security/advisories](https://saltcorn.com/security/advisories)

CVE-2026-40163 — Vulnerability Details

NEXTGUARD

Gratis scannen

CVE-2026-40163 — Vulnerability Details | NextGuard

Detectiestappenwordt vertaald…

• nodejs: Monitor Saltcorn logs for unusual file creation events, particularly in unexpected directories. Use lsof or fuser to identify processes accessing sensitive files.

lsof | grep /path/to/saltcorn/data

• generic web: Monitor access logs for requests to /sync/offlinechanges and /sync/uploadfinished originating from unexpected IP addresses.

grep '/sync/offline_changes|/sync/upload_finished' /var/log/apache2/access.log

Saltcorn heeft een ongeauthenticeerde Path Traversal in sync endpoints, waardoor willekeurige bestandsbewerkingen en directory lezen mogelijk is

Impact en Aanvalsscenarios

Uitbuitingscontext

Wie Loopt Risicowordt vertaald…

Detectiestappenwordt vertaald…

Aanvalstijdlijn

Dreigingsinformatie

Getroffen Software

Zwakheidsclassificatie (CWE)

Tijdlijn

Mitigatie en Workarounds

Hoe te verhelpenwordt vertaald…

CVE Beveiligingsnieuwsbrief

Veelgestelde vragenwordt vertaald…

What is CVE-2026-40163 — Path Traversal in Saltcorn?

Am I affected by CVE-2026-40163 in Saltcorn?

How do I fix CVE-2026-40163 in Saltcorn?

Is CVE-2026-40163 being actively exploited?

Where can I find the official Saltcorn advisory for CVE-2026-40163?

Is jouw project getroffen?