CVE-2026-40543
published 2026-06-01CVE-2026-40543: SOPlanning does not enforce authorization for backup functionalities. An unauthenticated attacker can directly query backup-related endpoints and retrieve…
PriorityP351high8.8CVSS 4.0
AVNACLATNPRNUINVCHVILVANSCNSINSANEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
EPSS
0.27%
19.0th percentile
SOPlanning does not enforce authorization for backup functionalities. An unauthenticated attacker can directly query backup-related endpoints and retrieve backup archives containing user databases with usernames and password hashes, as well as the config.csv file, which includes additional sensitive information.
This issue affects SOPlanning version 1.55 and below.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| soplanning | soplanning | <= 1.55 | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
SOPlanning is vulnerable to Path Traversal in backup endpoints.
ghsa_unreviewed·2026-06-01·CVSS 8.8
CVE-2026-40547 [HIGH] CWE-22 SOPlanning is vulnerable to Path Traversal in backup endpoints.
SOPlanning is vulnerable to Path Traversal in backup endpoints. Authenticated remote attacker is able to exploit a vulnerable endpoint and construct payloads that allow reading and executing files previously added through the backup functionality. Critically, due to CVE-2026-40543 (Missing Authorization), any backup file can be read by any (unauthorized) user.
This issue affects SOPlanning version 1.55 and below.
GHSA
SOPlanning does not enforce authorization for backup functionalities.
ghsa_unreviewed·2026-06-01
CVE-2026-40543 [HIGH] CWE-862 SOPlanning does not enforce authorization for backup functionalities.
SOPlanning does not enforce authorization for backup functionalities. An unauthenticated attacker can directly query backup-related endpoints and retrieve backup archives containing user databases with usernames and password hashes, as well as the config.csv file, which includes additional sensitive information.
This issue affects SOPlanning version 1.55 and below.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-06-01
Published