CVE Catalog

CVE-2026-42757

Critical
Published: Translated: NVD NIST

Summary

CVE-2026-42757 describes an improper limitation of a pathname to a restricted directory, leading to a 'Path Traversal' vulnerability in the WebinarIgnition application. This issue affects versions from n/a to below 4.08.253.

Risk Assessment

An attacker could gain access to files and directories that should be restricted, potentially leading to the exposure of sensitive data or system compromise.

Recommendation

It is recommended to update the WebinarIgnition application to version 4.08.253 or newer to mitigate this vulnerability.

Original NVD description (English source)

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Saleswonder Team: Tobias WebinarIgnition webinar-ignition allows Path Traversal.This issue affects WebinarIgnition: from n/a through < 4.08.253.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS