CVE-2026-35174
CRITICALChyrp Lite <2026.01 Uploads Path - Remote Code Execution
Title source: manualDescription
Chyrp Lite is an ultra-lightweight blogging engine. Prior to 2026.01, a path traversal vulnerability exists in the administration console that allows an administrator or a user with Change Settings permission to change the uploads path to any folder. This vulnerability allows the user to download any file on the server, including config.json.php with database credentials and overwrite critical system files, leading to remote code execution. This vulnerability is fixed in 2026.01.
References (1)
Core 1
Core References
X_Refsource_Confirm x_refsource_confirm
https://github.com/xenocrat/chyrp-lite/security/advisories/GHSA-p6pf-2grm-8257
Scores
CVSS v3
9.1
EPSS
0.0056
EPSS Percentile
41.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-22
CWE-434
CWE-73
Status
published
Products (2)
chyrplite/chyrp_lite
< 2026.01
xenocrat/chyrp-lite
< 2026.01
Published
Apr 06, 2026
Tracked Since
Apr 07, 2026