CVE-2026-11621 - Vulnerability Details

- Dcat-Admin User Setting upload editorMDUpload unrestricted upload

Description

A weakness has been identified in Dcat-Admin up to 2.2.3-beta. This impacts the function editorMDUpload of the file /admin/dcat-api/editor-md/upload of the component User Setting Page. This manipulation of the argument editormd-image-file causes unrestricted upload. The attack can be initiated remotely. The exploit has been made available to the public and could be used for attacks.

Published: 2026-06-09

Score: 5.1 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

A weakness in Dcat-Admin up to version 2.2.3-beta allows an attacker to override the editormd-image-file parameter via the /admin/dcat-api/editor-md/upload endpoint. The request can serialize arbitrary files without validating type or size, giving the attacker unrestricted upload capability. The attack can be initiated remotely, and the exploit is publicly available and could be used for attacks.

Affected Systems

The vulnerable component is the Dcat-Admin web application’s User Setting page. Versions up to 2.2.3-beta are affected. Affected vendors/products: Dcat-Admin. No later versions have been confirmed as unaffected, so any deployment using 2.2.3-beta or earlier should be evaluated.

Risk and Exploitability

The CVSS score of 5.1 indicates moderate impact. No EPSS score is publicly available, and the vulnerability is not listed in the CISA KEV catalog. However, the publicly available exploit file demonstrates that the vulnerability can be used in real attacks. Based on the description, it is inferred that the upload endpoint is reachable without additional authentication beyond normal login, but the specific authentication requirements are not explicitly stated. The potential impact is significant in scenarios where the upload endpoint is exposed to untrusted users, as unrestricted file upload could lead to code execution, defacement, or further compromise. Administrators should consider immediate remediation.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

n/a

Dcat-Admin

affected

Version	Status	Constraints
`2.2.3-beta`	affected	—

No data.

Vendor Product Confidence Versions

Dcatadmin

Dcat Admin

95%

Version	Status	Scheme	Platform
`2.2.3-beta`	affected	semver	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Apply the vendor’s security fix for Dcat-Admin versions up to 2.2.3-beta.
If a patch is not yet available, restrict the /admin/dcat-api/editor-md/upload endpoint to authorized administrators or users with specific role permissions.
Enforce server‑side validation of file type and size, rejecting non‑image files or files that exceed an established limit before storage.

Generated by OpenCVE AI on June 9, 2026 at 04:50 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

Attack Vector Network

Attack Complexity Low

Privileges Required High

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact Low

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Multiple

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

The EPSS score is 0.00035.

Exploitation poc

Automatable no

Technical Impact partial

References

Link	Providers
https://vuldb.com/cve/CVE-2026-11621
https://vuldb.com/submit/834849
https://vuldb.com/vuln/369302
https://vuldb.com/vuln/369302/cti
https://www.yuque.com/u25169484/wroc9b/co6eg4x23xkfesng

History

Tue, 09 Jun 2026 16:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Tue, 09 Jun 2026 05:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Dcatadmin Dcatadmin dcat Admin
Vendors & Products		Dcatadmin Dcatadmin dcat Admin

Tue, 09 Jun 2026 03:15:00 +0000

Type	Values Removed	Values Added
Description		A weakness has been identified in Dcat-Admin up to 2.2.3-beta. This impacts the function editorMDUpload of the file /admin/dcat-api/editor-md/upload of the component User Setting Page. This manipulation of the argument editormd-image-file causes unrestricted upload. The attack can be initiated remotely. The exploit has been made available to the public and could be used for attacks.
Title		Dcat-Admin User Setting upload editorMDUpload unrestricted upload
First Time appeared		Dcat-admin Dcat-admin dcat-admin
Weaknesses		CWE-284 CWE-434
CPEs		cpe:2.3:a:dcat-admin:dcat-admin::::::::
Vendors & Products		Dcat-admin Dcat-admin dcat-admin
References		https://vuldb.com/cve/CVE-2026-11621 https://vuldb.com/submit/834849 https://vuldb.com/vuln/369302 https://vuldb.com/vuln/369302/cti https://www.yuque.com/u25169484/wroc9b/co6eg4x23xkfesng
Metrics		cvssV2_0 `{'score': 5.8, 'vector': 'AV:N/AC:L/Au:M/C:P/I:P/A:P/E:POC/RL:ND/RC:UR'}` cvssV3_0 `{'score': 4.7, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}` cvssV3_1 `{'score': 4.7, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}` cvssV4_0 `{'score': 5.1, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}`

Subscriptions

Dcat-admin Dcat-admin

Dcatadmin Dcat Admin

MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2026-06-09T03:00:18.253Z

Updated: 2026-06-09T15:13:39.885Z

Reserved: 2026-06-08T20:16:41.623Z

Link: CVE-2026-11621

Vulnrichment

Updated: 2026-06-09T14:57:09.356Z

NVD

Status : Deferred

Published: 2026-06-09T03:16:26.210

Modified: 2026-06-09T13:33:34.393

Link: CVE-2026-11621

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-06-09T05:00:18Z

Weaknesses

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required High

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact Low

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Multiple

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Exploitation poc

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object