CVE-2026-40548
SOPlanning File Upload Path Traversal Vulnerability
Publication date: 2026-06-01
Last updated on: 2026-06-01
Assigner: CERT.PL
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| soplanning | soplanning | to 1.55 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-434 | The product allows the upload or transfer of dangerous file types that are automatically processed within its environment. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in SOPlanning version 1.55 and below, where the software does not verify the extension of uploaded files during the backup functionality. An authenticated attacker can upload a crafted ZIP archive containing both a legitimate user.csv file and a malicious file. The malicious file is extracted on the server.
When this vulnerability is combined with CVE-2026-40547, which is a path traversal vulnerability, the attacker can place the malicious file (such as a PHP script) into a web-accessible location on the server. This allows the attacker to execute the malicious script through a web browser.
How can this vulnerability impact me? :
This vulnerability can allow an authenticated attacker to execute arbitrary code on the server by uploading and executing malicious files. This can lead to unauthorized access, data compromise, server control, and potentially further exploitation of the system.