Local File Inclusion Vulnerability in IFTOP by WellChoose
CVE-2026-3826

9.3CRITICAL

Key Information:

Vendor: Wellchoose
Status: Iftop
Vendor: CVE Published:; 11 March 2026

What is CVE-2026-3826?

IFTOP, a network monitoring tool developed by WellChoose, is susceptible to a Local File Inclusion vulnerability. This flaw enables unauthorized remote attackers to include files from the server's file system, potentially leading to the execution of arbitrary code. Organizations using IFTOP should prioritize applying the necessary security patches to mitigate this risk and protect their systems from exploitation.

Affected Version(s)

IFTOP 0

References

https://www.twcert.org.tw/tw/cp-132-10755-94136-1.html

third-party-advisory

https://www.twcert.org.tw/en/cp-139-10756-73f66-2.html

third-party-advisory

CVSS V4

Score:

9.3

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 11, 2026
Vulnerability Reserved
Mar 9, 2026

CVE-2026-3826 Data

JSON

Wellchoose

What is CVE-2026-3826?

Affected Version(s)

References

CVSS V4

Timeline