MEDIUM
agentejo
CVE published 2026-06-29
CVE-2026-13533
A security vulnerability has been detected in agentejo Cockpit CMS up to 0.12.2. The issue affects the function Spyc::YAMLLoad in the file /config/config.yaml of the htaccess Handler component. This vulnerability allows remote attackers to access files or directories. The exploit has been publicly disclosed and may be used. The vendor was contacted but did not respond.