0x5t4l1n/CVE
1
0
Fork 0
mirror of https://github.com/0x5t4l1n/CVE.git synced 2026-05-26 19:26:32 +00:00
Code Issues Packages Projects Releases Wiki Activity

Create CVE-2026-41900.md

Browse Source
This commit is contained in:
Stalin
2026-05-01 22:14:25 +05:30
committed by GitHub
parent 18a9d03e95
commit 72df13a170
1 changed files with 28 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
patches/CVE-2026-41900.md
+28
View File
@@ -0,0 +1,28 @@
![CVE](https://img.shields.io/badge/CVE-2026--41900-red)
# CVE-2026-41900 — RCE via Sandbox Escape (OpenLearnX)
**Severity:** High
**CWE:** CWE-78, CWE-94, CWE-250, CWE-284, CWE-693
## Summary
A sandbox escape in OpenLearnX allows Remote Code Execution via its Python execution environment.
## Impact
- Arbitrary command execution
- Full system compromise
## Affected
< 2.0.3
## Fixed
2.0.3
## References
- https://github.com/advisories/GHSA-8h25-q488-4hxw
- https://github.com/th30d4y/OpenLearnX/commit/14765d7
## Credits
Finder: krraze
Coordinator: Stalin-143
Coordinator: harriiinnii