CVE-2026-6855 - Instructlab: instructlab: path traversal allows arbitrary directory creation and file write
CVE ID :CVE-2026-6855 Published : April 22, 2026, 12:29 p.m. | 31 minutes ago Description :A flaw was found in InstructLab. A local attacker could exploit a path traversal vulnerability in the chat session handler by manipulating the `logs_dir` parameter. This allows the attacker to create new
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] 🔒 worldleaks: Equatorial Coca-Cola Bottling
- [CYBER] TradFi tokenization has single points of failure. DeFi hack shows why that matters - ledgerinsights.com
- [CYBER] UK Pledges £90m for Cybersecurity and Pushes for ‘Resilience Pledge’
- [CYBER] UK government says 100 countries have spyware that can hack people’s phones
- [CYBER] 'Felony murder law does not require that a defendant pull the trigger': Ex-FBI chief calls for ransomware attackers to face homicide charges if attacks lead to deaths
- [CYBER] DeFi Security Suffers New Blow With $3 Million Volo Exploit - PYMNTS.com