CVE-2026-30345

HIGH

CTFd v3.8.1-18-gdb5a18c4 - Path Traversal

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2026-30345. PoCs published by syphonetic.

AI-analyzed exploit summary This repository contains a functional exploit for CVE-2026-30345, an arbitrary file write vulnerability in CTFd < 3.8.2. The exploit leverages a zip slip vulnerability in the backup import functionality to write a malicious .bashrc file, achieving persistent remote code execution.

Description

A zip slip vulnerability in the Admin import functionality of CTFd v3.8.1-18-gdb5a18c4 allows attackers to write arbitrary files outside the intended directories via supplying a crafted import.

Exploits (1)

nomisec WORKING POC 5 stars

by syphonetic · poc

https://github.com/syphonetic/CVE-2026-30345

View Code ZIP pw:eip

This repository contains a functional exploit for CVE-2026-30345, an arbitrary file write vulnerability in CTFd < 3.8.2. The exploit leverages a zip slip vulnerability in the backup import functionality to write a malicious .bashrc file, achieving persistent remote code execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: CTFd < 3.8.2

Auth required

Prerequisites: Valid CTFd admin credentials · Network access to the CTFd instance · Ability to upload a malicious backup file

MITRE ATT&CK