Arbitrary File Upload in Global IT's WEOLL
CVE-2026-6211

8.7HIGH

Key Information:

Vendor: Global It Informatics Services Inc.
Status: Weoll
Vendor: CVE Published:; 12 June 2026

🔔 Create Global It Informatics Services Inc. Vulnerability Alert

What is CVE-2026-6211?

Unrestricted upload of file with dangerous type vulnerability in Global IT Informatics Services Inc. WEOLL allows Accessing Functionality Not Properly Constrained by ACLs.

This issue affects WEOLL: from 2.0.9 before 3.2.45.33.

Affected Version(s)

WEOLL 2.0.9 < 3.2.45.33

References

https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/...

government-resource

CVSS V3.1

Score:

8.7

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 12, 2026
Vulnerability Reserved
Apr 13, 2026

Credit

Hamza Metin GERDAN

CVE-2026-6211 Data

JSON