CVE-2026-5258

HIGH 7.3

Sanster IOPaint File Manager file_manager.py _get_file path traversal

CVSS Score

7.3

EPSS Score

0.1%

EPSS Percentile

25th

A vulnerability was found in Sanster IOPaint 1.5.3. Impacted is the function _get_file of the file iopaint/file_manager/file_manager.py of the component File Manager. Performing a manipulation of the argument filename results in path traversal. The attack is possible to be carried out remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

CWE	CWE-22
Vendor	sanster
Product	iopaint
Published	Apr 1, 2026
Last Updated	Apr 1, 2026

Stay Ahead of the Next One

Get instant alerts for sanster iopaint

Be the first to know when new high vulnerabilities affecting sanster iopaint are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

Sanster / IOPaint

1.5.3

References

NVD ↗ CVE.org ↗ EPSS Data ↗

vuldb.com: https://vuldb.com/vuln/354448 vuldb.com: https://vuldb.com/vuln/354448/cti vuldb.com: https://vuldb.com/submit/780666 github.com: https://github.com/August829/CVEP/issues/11

Credits

🔍 Yu_Bao (VulDB User) VulDB