Description
pwnlift before d7a9544, in a privileged deployment, contains a symlink following vulnerability in the upload handler in Components/Pages/Home.razor.
Published: 2026-06-23
Score: 7.4 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

pwnlift contains a symlink following flaw in the upload handler (Components/Pages/Home.razor) that operates only in privileged deployments. The weakness is a CWE-61 absolute path traversal; an attacker who can upload a crafted file can cause the application to follow a symbolic link to arbitrary files, potentially reading or overwriting sensitive data and leading to confidentiality breaches.

Affected Systems

The affected software is rasta-mouse pwnlift prior to commit d7a95449, where the upload handler follows symlinks. The flaw exists only in privileged deployments and affects all installations that have not upgraded past this commit.

Risk and Exploitability

The CVSS score is 7.4, indicating high severity. EPSS data is not available and the vulnerability implying limited known exploitation. upload endpoint, the privileged deployment. Given the high potential for unauthorized file access, the risk warrants prompt action.

Generated by OpenCVE AI on June 24, 2026 at 11:56 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade pwnlift to commit d7a95449 or later to remove the symlink following flaw.
  • Restrict upload directory permissions to dis feature in privileged deployments.
  • As a temporary measure, configure the underlying filesystem or application settings to ignore or reject symbolic links during file handling.

Generated by OpenCVE AI on June 24, 2026 at 11:56 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 24 Jun 2026 12:15:00 +0000

Type Values Removed Values Added
Title Symlink Following Vulnerability in pwnlift Upload Handler

Wed, 24 Jun 2026 08:15:00 +0000

Type Values Removed Values Added
Title Symlink Following Vulnerability in pwnlift Upload Handler

Wed, 24 Jun 2026 05:30:00 +0000

Type Values Removed Values Added
Title Symlink Following Vulnerability in pwnlift Upload Handler

Wed, 24 Jun 2026 01:45:00 +0000

Type Values Removed Values Added
Title Symlink Following Vulnerability in pwnlift Upload Handler

Tue, 23 Jun 2026 23:00:00 +0000

Type Values Removed Values Added
Title Symlink Following Vulnerability in pwnlift Upload Handler Enabling Arbitrary File Access

Tue, 23 Jun 2026 21:30:00 +0000

Type Values Removed Values Added
First Time appeared Rasta-mouse
Rasta-mouse pwnlift
Vendors & Products Rasta-mouse
Rasta-mouse pwnlift

Tue, 23 Jun 2026 20:00:00 +0000

Type Values Removed Values Added
Title Symlink Following Vulnerability in pwnlift Upload Handler Enabling Arbitrary File Access

Tue, 23 Jun 2026 18:15:00 +0000

Type Values Removed Values Added
Title Symlink Following Vulnerability in Pwnlift Upload Handler

Tue, 23 Jun 2026 16:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Tue, 23 Jun 2026 16:15:00 +0000

Type Values Removed Values Added
Title Symlink Following Vulnerability in Pwnlift Upload Handler

Tue, 23 Jun 2026 14:45:00 +0000

Type Values Removed Values Added
Description pwnlift before d7a9544, in a privileged deployment, contains a symlink following vulnerability in the upload handler in Components/Pages/Home.razor.
Weaknesses CWE-61
References
Metrics cvssV3_1

{'score': 7.4, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H'}


Subscriptions

Rasta-mouse Pwnlift
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2026-07-02T19:30:47.044Z

Reserved: 2026-06-23T13:57:33.608Z

Link: CVE-2026-56815

cve-icon Vulnrichment

Updated: 2026-07-02T19:30:47.044Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-24T12:00:05Z

Weaknesses
  • CWE-61

    UNIX Symbolic Link (Symlink) Following