Vulnerability Description
Ferret is a declarative system for working with web data. Prior to 2.0.0-alpha.4, a path traversal vulnerability in Ferret's IO::FS::WRITE standard library function allows a malicious website to write arbitrary files to the filesystem of the machine running Ferret. When an operator scrapes a website that returns filenames containing ../ sequences, and uses those filenames to construct output paths (a standard scraping pattern), the attacker controls both the destination path and the file content. This can lead to remote code execution via cron jobs, SSH authorized_keys, shell profiles, or web shells. This vulnerability is fixed in 2.0.0-alpha.4.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Montferret | Ferret | < 2.0.0 |
Related Weaknesses (CWE)
References
- https://github.com/MontFerret/ferret/commit/160ebad6bd50f153453e120f6d909f5b8332Patch
- https://github.com/MontFerret/ferret/security/advisories/GHSA-j6v5-g24h-vg4jExploitMitigationVendor Advisory
- https://github.com/MontFerret/ferret/security/advisories/GHSA-j6v5-g24h-vg4jExploitMitigationVendor Advisory
FAQ
What is CVE-2026-34783?
CVE-2026-34783 is a vulnerability with a CVSS score of 8.1 (HIGH). Ferret is a declarative system for working with web data. Prior to 2.0.0-alpha.4, a path traversal vulnerability in Ferret's IO::FS::WRITE standard library function allows a malicious website to write...
How severe is CVE-2026-34783?
CVE-2026-34783 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-34783?
Check the references section above for vendor advisories and patch information. Affected products include: Montferret Ferret.