Vulnerability Description
coursevault-preview is a utility for previewing course material files from a configured directory. coursevault-preview versions prior to 0.1.1 contain a path traversal vulnerability in the resolveSafe utility. The boundary check used String.prototype.startsWith(baseDir) on a normalized path, which does not enforce a directory boundary. An attacker who controls the relativePath argument to affected CoursevaultPreview methods may be able to read files outside the configured baseDir when a sibling directory exists whose name shares the same string prefix. This vulnerability is fixed in 0.1.1.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Moritzmyrz | Coursevault-Preview | < 0.1.1 |
Related Weaknesses (CWE)
References
- https://github.com/moritzmyrz/coursevault-preview/security/advisories/GHSA-9h9m-ExploitVendor Advisory
FAQ
What is CVE-2026-35613?
CVE-2026-35613 is a vulnerability with a CVSS score of 5.1 (MEDIUM). coursevault-preview is a utility for previewing course material files from a configured directory. coursevault-preview versions prior to 0.1.1 contain a path traversal vulnerability in the resolveSafe...
How severe is CVE-2026-35613?
CVE-2026-35613 has been rated MEDIUM with a CVSS base score of 5.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-35613?
Check the references section above for vendor advisories and patch information. Affected products include: Moritzmyrz Coursevault-Preview.