CRITICAL
FalkorDB
CVE published 2026-04-10
CVE-2026-6057
FalkorDB Browser 1.9.3 contains an unauthenticated path traversal vulnerability in its file upload API. The flaw allows remote attackers to write arbitrary files to the server filesystem, which can lead to remote code execution. The vulnerability is classified as CWE-22 (Path Traversal) and carries a CVSS 3.1 score of 9.8 (Critical), indicating network-based exploitation with low attack complexity, no req [truncated]