Description
ProjeQtor versions 7.0 through 12.4.3 contain a path traversal vulnerability in the log file viewer at dynamicDialog.php where the logname parameter is not validated against directory traversal sequences before constructing file paths. Authenticated attackers can inject directory traversal sequences ../ into the logname parameter to read arbitrary .log files accessible to the web server process on the filesystem.
Published: 2026-04-27
Score: 7.1 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Note: The description of this vulnerability has been updated. The core issue is a directory traversal flaw in ProjeQtor’s log file viewer (dynamicDialog.php) that allows an authenticated user to supply a logname parameter containing ../ sequences. The application does not validate this input before constructing the file path, enabling the attacker to read arbitrary .log files accessible to the web server process. The impact is unauthorized disclosure of potentially sensitive information stored in those log files, such as credentials, configuration, or debug data.

Affected Systems

All ProjeQtor installations from version 7.0 up to 12.4.3, inclusive, are affected because the path traversal vulnerability resides in the dynamicDialog.php component of the ProjeQtor:ProjeQtor product. No later versions (12.4.4 and above) contain the fix.

Risk and Exploitability

Based on the updated description, exploitation requires an attacker to have valid authentication to the ProjeQtor application. After authentication, the attacker can craft requests to dynamicDialog.php with directory traversal payloads to read arbitrary log files that are readable by the web server process. The vulnerability scores 7.1 on the CVSS scale, indicating moderate to high severity. The EPSS score is < 1%, and the issue is not listed in the CISA KEV catalog. The attack vector is via the web interface, leveraging the logname request parameter, and the exploitation is straightforward in environments where log files are readable by the web server process.

Generated by OpenCVE AI on May 26, 2026 at 14:52 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade ProjeQtor to version 12.4.4 or later so the path traversal flaw is patched.
  • Restrict file system permissions so that only the web server user can read log files, preventing disclosure if traversal is still possible.
  • Implement server‑side validation that rejects any directory traversal sequences in the logname parameter, ensuring that only legitimate log file names are processed.

Generated by OpenCVE AI on May 26, 2026 at 14:52 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 26 May 2026 13:45:00 +0000

Type Values Removed Values Added
Description ProjeQtor versions 7.0 through 12.4.3 contains a path traversal vulnerability in the log file viewer at dynamicDialog.php where the logname parameter is not validated against directory traversal sequences before constructing file paths. Authenticated attackers can inject directory traversal sequences ../ into the logname parameter to read arbitrary .log files accessible to the web server process on the filesystem. ProjeQtor versions 7.0 through 12.4.3 contain a path traversal vulnerability in the log file viewer at dynamicDialog.php where the logname parameter is not validated against directory traversal sequences before constructing file paths. Authenticated attackers can inject directory traversal sequences ../ into the logname parameter to read arbitrary .log files accessible to the web server process on the filesystem.

Tue, 28 Apr 2026 03:00:00 +0000

Type Values Removed Values Added
First Time appeared Projeqtor
Projeqtor projeqtor
Vendors & Products Projeqtor
Projeqtor projeqtor

Mon, 27 Apr 2026 17:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 27 Apr 2026 15:30:00 +0000

Type Values Removed Values Added
Description ProjeQtor versions 7.0 through 12.4.3 contains a path traversal vulnerability in the log file viewer at dynamicDialog.php where the logname parameter is not validated against directory traversal sequences before constructing file paths. Authenticated attackers can inject directory traversal sequences ../ into the logname parameter to read arbitrary .log files accessible to the web server process on the filesystem.
Title ProjeQtor < 12.4.4 Path Traversal via dynamicDialog.php
Weaknesses CWE-22
References
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N'}

cvssV4_0

{'score': 7.1, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

Projeqtor Projeqtor
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-05-26T11:52:15.518Z

Reserved: 2026-04-20T16:07:47.311Z

Link: CVE-2026-41465

cve-icon Vulnrichment

Updated: 2026-04-27T16:25:49.873Z

cve-icon NVD

Status : Deferred

Published: 2026-04-27T16:16:45.793

Modified: 2026-05-26T14:16:36.120

Link: CVE-2026-41465

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-26T15:00:10Z

Weaknesses