CVE-2026-35477

MEDIUM 5.5

InvenTree has SSTI in PART_NAME_FORMAT bypasses CVE-2026-27629 fix via {% if part.pk %} sandbox escape

CVSS Score

5.5

EPSS Score

0.0%

EPSS Percentile

6th

InvenTree is an Open Source Inventory Management System. From 1.2.3 to 1.2.6, the fix for CVE-2026-27629 upgraded the PART_NAME_FORMAT validator to use jinja2.sandbox.SandboxedEnvironment. However, the actual renderer in part/helpers.py was not updated and still uses the non-sandboxed jinja2.Environment. Additionally, the validator uses a dummy Part instance with pk=None, which allows conditional template expressions to behave differently during validation versus production rendering. A staff user with settings access can craft a template that passes validation but executes arbitrary code during rendering. This issue requires access by a user with granted staff permissions. This vulnerability is fixed in 1.2.7 and 1.3.0.

CWE	CWE-1336
Vendor	inventree
Product	inventree
Published	Apr 8, 2026
Last Updated	Apr 10, 2026

Stay Ahead of the Next One

Get instant alerts for inventree inventree

Be the first to know when new medium vulnerabilities affecting inventree inventree are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Changed

Confidentiality

Low

Integrity

Low

Availability

None

Affected Versions

inventree / InvenTree

>= 1.2.3, < 1.2.7

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/inventree/InvenTree/security/advisories/GHSA-84jh-x777-8pqq