CVE-2026-45225
HIGHHeym < 0.0.21 Path Traversal File Upload via upload_file()
Title source: cnaDescription
Heym before 0.0.21 contains a path traversal vulnerability in the file upload endpoint that allows authenticated users to write attacker-controlled files to arbitrary locations by supplying a crafted filename with traversal sequences. Attackers can exploit the unvalidated filename parameter in the upload_file() handler to bypass path restrictions and write, read, or delete files outside the intended storage directory.
References (4)
Core 4
Core References
Release Notes release-notes
https://github.com/heymrun/heym/releases/tag/v0.0.21
Issue Tracking issue-tracking
https://github.com/heymrun/heym/pull/92
Third Party Advisory third-party-advisory
https://www.vulncheck.com/advisories/heym-path-traversal-file-upload-via-upload-file
Scores
CVSS v3
7.6
EPSS
0.0036
EPSS Percentile
27.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
partial
Details
CWE
CWE-22
Status
published
Products (2)
heymrun/heym
< 0.0.21
heymrun/heym
835843e6d2bf7d018cbb8e50f28f0426eaa20c84
Published
May 12, 2026
Tracked Since
May 13, 2026