VYPR
Medium severityNVD Advisory· Published May 14, 2026· Updated May 14, 2026

CVE-2026-42598

CVE-2026-42598

Description

Pode is a Cross-Platform PowerShell web framework for creating REST APIs, Web Sites, and TCP/SMTP servers. From 2.4.0, to before 2.13.0, when requesting content from a Static Route, it was possible to request paths such as http://localhost:8080/c:/Windows/System32/drivers/etc/hosts and have the contents returned. This vulnerability is fixed in 2.13.0.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Badgerati/Podereferences2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: >=2.4.0,<2.13.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.