VIR Vulnerability Intelligence Relay

Package impact

golang GO / github.com/hahwul/dalfox/v2

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Published Description Impact
CVE-2026-45089 high 8.2 8.2 16h ago Dalfox Server Mode has an Unauthenticated Arbitrary File Create/Append via `output` Option golang
CVE-2026-45088 high 7.5 7.5 16h ago Dalfox Server Mode has an Unauthenticated Arbitrary File Read with Out-of-Band Exfiltration via `custom-payload-file` golang
CVE-2026-45090 high 7.5 7.5 16h ago Dalfox has an Unauthenticated Remote DoS via Closed-Channel Write in `ParameterAnalysis` (server mode) golang