Threats Tagged 'cve-2026-56124'
View all threats tagged with 'cve-2026-56124'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2026-56124'
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-56124: Exposure of Private Personal Information to an Unauthorized Actor in shimosyan phpUploaderCVE-2026-56124 0 phpUploader before 2.0.2 contains an unauthenticated information disclosure vulnerability that allows remote attackers to access the full contents of the uploaded-files database table by visiting any page of the application. The index model executes an unbounded SELECT query and embeds the complete JSON-encoded result set in an inline script block, exposing uploader IP addresses, Argon2ID key hashes, internal filenames, and SHA-256 fingerprints. Join the discussion | CVE Database V5 | 06/29/2026, 13:47:21 UTC Added: 06/29/2026, 14:51:51 UTC |
Showing 1 to 1 of 1 result