mirror of https://github.com/0x5t4l1n/CVE.git synced 2026-05-26 11:25:49 +00:00

Files

T

copilot-swe-agent[bot] 8c3b271b98 Replace Stalin-143 with 0x5t4l1n across all files

Agent-Logs-Url: https://github.com/0x5t4l1n/CVE/sessions/fa832b9e-3288-4289-b847-672ac80fb634

Co-authored-by: 0x5t4l1n <161853795+0x5t4l1n@users.noreply.github.com>

2026-05-01 21:00:14 +00:00

615 B

Raw Permalink Blame History

CVE-2026-41900 — RCE via Sandbox Escape (OpenLearnX)

Severity: High
CWE: CWE-78, CWE-94, CWE-250, CWE-284, CWE-693

Summary

A sandbox escape in OpenLearnX allows Remote Code Execution via its Python execution environment.

Impact

Arbitrary command execution
Full system compromise

Affected

< 2.0.3

Fixed

2.0.3

References

https://github.com/advisories/GHSA-8h25-q488-4hxw
https://github.com/th30d4y/OpenLearnX/commit/14765d7

Credits

Finder: krraze
Coordinator: 0x5t4l1n
Coordinator: harriiinnii

615 B Raw Permalink Blame History