CVE-2026-0805
published 2026-01-30CVE-2026-0805: An input neutralization vulnerability in the Backup Configuration component of Crafty Controller allows a remote, authenticated attacker to perform file…
PriorityP261high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
0.60%
44.2th percentile
An input neutralization vulnerability in the Backup Configuration component of Crafty Controller allows a remote, authenticated attacker to perform file tampering and remote code execution via path traversal.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| arcadia_technology_llc | crafty_controller | >= 4.5.0 < 4.8.0 | 4.8.0 |
| craftycontrol | crafty_controller | >= 4.5.0 < 4.8.0 | 4.8.0 |
| gitlab | crafty_controller | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Vulnerability exists in the Backup Configuration component of Crafty Controller; monitor for path traversal sequences in backup configuration requests (e.g., '../' or URL-encoded equivalents) submitted by authenticated users ↗
- →Target affected Crafty Controller versions >=4.5.0 and <4.8.0; presence of these versions in the environment indicates exposure to this path traversal RCE vulnerability ↗
- ·Exploitation requires the attacker to be remote AND authenticated; unauthenticated access alone is insufficient to trigger this vulnerability ↗
- ·The vulnerability is specifically scoped to the Backup Configuration component, not the broader Crafty Controller attack surface ↗
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GitLab
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Crafty Controller
vendor_gitlab·2026-01-30·CVSS 8.8
CVE-2026-0805 [HIGH] CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Crafty Controller
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Crafty Controller
An input neutralization vulnerability in the Backup Configuration component of Crafty Controller allows a remote, authenticated attacker to perform file tampering and remote code execution via path traversal.
Affected products: Crafty Controller
Affected versions: >=4.5.0, <4.8.0 (affected)
Solution: Upgrade to version 4.8.0
Credit: Thank you to [Rozza / rchar](https://gitlab.com/rchar) on GitLab for reporting this issue.
GHSA
GHSA-m23h-283x-x3r6: An input neutralization vulnerability in the Backup Configuration component of Crafty Controller allows a remote, authenticated attacker to perform fi
ghsa_unreviewed·2026-01-30
CVE-2026-0805 [HIGH] CWE-22 GHSA-m23h-283x-x3r6: An input neutralization vulnerability in the Backup Configuration component of Crafty Controller allows a remote, authenticated attacker to perform fi
An input neutralization vulnerability in the Backup Configuration component of Crafty Controller allows a remote, authenticated attacker to perform file tampering and remote code execution via path traversal.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-01-30
Published