Critical severity9.8NVD Advisory· Published Apr 10, 2026· Updated Apr 13, 2026

CVE-2026-6057

Description

FalkorDB Browser 1.9.3 contains an unauthenticated path traversal vulnerability in the file upload API that allows remote attackers to write arbitrary files and achieve remote code execution.

Affected products

FalkorDB/Falkordb Browserreferences

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/FalkorDB/falkordb-browser/pull/1611nvd

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000