CVE Catalog

CVE-2026-6211

HighCVSS 8.7
Published: Updated: Translated: NVD NIST

Summary

A vulnerability in WEOLL by Global IT Informatics Services Inc. allows unrestricted upload of files with dangerous types, leading to access to functionality not properly constrained by ACLs.

Risk Assessment

The organization may be exposed to attacks that exploit this vulnerability to gain unauthorized access to the system.

Recommendation

It is recommended to update WEOLL to version 3.2.45.33 or later and implement appropriate access controls.

Original NVD description (English source)

Unrestricted upload of file with dangerous type vulnerability in Global IT Informatics Services Inc. WEOLL allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects WEOLL: from 2.0.9 before 3.2.45.33.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS