CVE-2026-42866 – Tookie: Arbitrary file write via path traversal in -u username / -U userfile output filename

CVE ID :CVE-2026-42866

Published : May 11, 2026, 7:16 p.m. | 43 minutes ago

Description :Tookie is a advanced OSINT information gathering tool. Prior to 4.1fix, modules/modules.py’s write_txt, write_csv, write_json, and (commented-but-shipping) scan_file helpers open their output as open(f”{user}.”), where user comes unsanitized from the -u CLI flag or any line of a -U usernames file. A username that contains path-separator sequences (.., /, , or an absolute path) causes tookie-osint to write the scan output to an arbitrary path the invoking user has write permission for. This vulnerability is fixed in 4.1fix.

Severity: 6.7 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-8344 – D-Link DIR-816 formDMZ.cgi sub_445E7C command injection

CVE-2026-42188 – Geyser: Server-Side Request Forgery (SSRF) via Player Head Texture URL

CVE-2026-42046 – libcaca: Heap OOB write in canvas import functions caused by int overflow

CVE-2026-43874 – WWBN AVideo: Incomplete Fix for YPTSocket autoEvalCodeOnHTML Strip: Unauthenticated Cross-User JavaScript Execution via `$msg[‘json’]` Relay Bypass