CVE-2026-56394 Blast Radius

MEDIUM • CVSS 6.5Craft CMS from 4.0.0-RC1 contains an authenticated path traversal vulnerability in the assets/icon endpoint where the extension parameter is not valid…

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2026-56394.

Start Free Scan →← Back to CVE-2026-56394