CVE-2026-33589 - Arbitrary File Read via Local File Inclusion (LFI)
CVE ID :CVE-2026-33589 Published : May 7, 2026, 11:16 a.m. | 22 minutes ago Description :Lack of user input validation in the file upload functionality of Open Notebook v1.8.3 allows the application user to access local files content from the docker container via path traversal. Severity: 8
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] An AI security auditor that red-teams PRs to find exploits, not just patterns (open-source + Ollama support)
- [CYBER] Rubrik vs Cohesity: The Enterprise Decision Framework
- [CYBER] Approve Once, Exploit Forever: The Trust Persistence Problem in Claude Code, Codex and Gemini-CLI
- [CYBER] Claude-Themed Malware Campaigns
- [CYBER] News Explorer — DeFi Liquidity Provider TrustedVolumes Loses $6.7M in Exploit - Decrypt
- [CYBER] Hackers hijack Google Ads to spread phishing campaign spoofing top GoDaddy tool