Unauthenticated Path Traversal in FalkorDB Browser by FalkorDB
CVE-2026-6057

Currently unrated

Key Information:

Vendor: Falkordb
Status: Falkordb Browser
Vendor: CVE Published:; 10 April 2026

What is CVE-2026-6057?

The FalkorDB Browser 1.9.3 suffers from a significant security flaw related to unauthenticated path traversal within its file upload API. This vulnerability enables remote attackers to upload arbitrary files, thereby gaining the ability to execute remote code on the affected system. Such an exploit can lead to severe consequences, including potential compromise of sensitive information and unauthorized access to system resources.

Affected Version(s)

FalkorDB Browser Linux 1.9.3

References

https://github.com/FalkorDB/falkordb-browser

https://github.com/FalkorDB/falkordb-browser/pull/1611

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 10, 2026
Vulnerability Reserved
Apr 10, 2026

Credit

Ramesh Gunnam from Securin

CVE-2026-6057 Data

JSON

Falkordb

What is CVE-2026-6057?

Affected Version(s)

References

Timeline

Credit