CVE Catalog

CVE-2026-40749

CriticalCVSS 9.9
Published: Updated: Translated: NVD NIST

Summary

In Charity Zone versions <= 1.1.1, there is a vulnerability that allows subscribers to upload arbitrary files.

Risk Assessment

This vulnerability could lead to unauthorized access to the system and potential introduction of malware.

Recommendation

It is recommended to upgrade to the latest version of Charity Zone to mitigate this vulnerability.

Original NVD description (English source)

Subscriber Arbitrary File Upload in Charity Zone <= 1.1.1 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS