Zero Day MonitorZDM
DashboardVulnerabilitiesTrendingZero-DaysNewsAbout
Login
ImpressumPrivacy Policy
Zero Day Monitor © 2026
2764 articles · 174990 vulns · 36/41 feeds (7d)
← Back to list
7.5
CVE-2026-26396EXPLOITED
n/a · n/a

CVE-2026-26396: OpenBMB XAgent v1.0.0 and before is vulnerable to path traversal in the file() function in XAgent/XAgentServer/applicati

Description

OpenBMB XAgent v1.0.0 and before is vulnerable to path traversal in the file() function in XAgent/XAgentServer/application/routers/workspace.py. The input parameter “filename” is user-controllable and is concatenated into the file path to be read without proper validation, leading to a directory traversal vulnerability that may result in sensitive information disclosure.

Affected Products

VendorProductVersions
n/an/an/a

References

  • https://gist.github.com/jack2223333/f79f233b67d6506b9dd184399525cbf4

Related News (1 articles)

Tier C
VulDB5h ago
CVE-2026-26396 | OpenBMB XAgent up to 1.0.0 Workspace workspace.py file filename path traversal
→ No new info (linked only)
CVSS 3.17.5 HIGH
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CISA KEV❌ No
Actively exploited✅ Yes
PublishedJul 13, 2026
Last enriched4h agov2
Tags
path traversal
Trending Score65
Source articles2
Independent1
Info Completeness6/14
Missing: cvss, epss, cwe, kev, exploit, patch, iocs, mitre_attack

Community Vote

0
Login to vote
0 upvotes0 downvotes
No votes yet

Related CVEs (5)

HIGHCVE-2025-45869EXP
CVE-2025-45869: LogicalDOC Enterprise Version up to and before v9.1.1 is vulnerable to Server-Side Request Forgery (SSRF). An unauthenti
Trending: 57
HIGHCVE-2026-51541EXP
CVE-2026-51541: OpENer 2.3.0 (commit 76b95cf) has an out-of-bounds read issue in CIP message parsing when handling malformed explicit re
Trending: 48
HIGHCVE-2026-51539EXP
CVE-2026-51539: A Denial of Service (DoS) vulnerability exists in the receive loop of libmodbus 3.1.12 when running on Windows. The issu
Trending: 48
HIGHCVE-2026-51540EXP
CVE-2026-51540: OpENer 2.3.0 (master branch up to commit 76b95cf) is vulnerable to a severe memory corruption issue caused by an integer
Trending: 48
NONECVE-2026-51537
CVE-2026-51537: EIPStackGroup OpENer 2.3.0 (commit 76b95cf) has an out-of-bounds read issue in Connection Manager handling of ForwardOpe
Trending: 32

Pin to Dashboard

Verification

State: unverified
Confidence: 0%

Vulnerability Timeline

CVE Published
Jul 13, 2026
Discovered by ZDM
Jul 13, 2026
Updated: affectedVersions, severity, activelyExploited, tags
Jul 13, 2026
Actively Exploited
Jul 13, 2026

Version History

v2
Last enriched 4h ago
v2Tier C4h ago

Updated vendor and product information, marked severity as HIGH, and noted that the vulnerability is actively exploited.

affectedVersionsseverityactivelyExploitedtags
via VulDB
v14h ago

Initial creation