{"id":77042,"date":"2026-02-13T00:54:53","date_gmt":"2026-02-12T21:24:53","guid":{"rendered":"https:\/\/afaghhosting.net\/blog\/cve-2026-1358-airleader-master-unrestricted-upload-of-file-with-dangerous-type\/"},"modified":"2026-02-13T00:54:53","modified_gmt":"2026-02-12T21:24:53","slug":"cve-2026-1358-airleader-master-unrestricted-upload-of-file-with-dangerous-type","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/cve-2026-1358-airleader-master-unrestricted-upload-of-file-with-dangerous-type\/","title":{"rendered":"CVE-2026-1358 &#8211; Airleader Master Unrestricted Upload of File with Dangerous Type"},"content":{"rendered":"<p>CVE ID : CVE-2026-1358<\/p>\n<p>Published :  Feb. 12, 2026, 9:24 p.m. | 1\u00a0hour, 3\u00a0minutes ago<\/p>\n<p>Description : Airleader Master versions 6.381 and prior allow for file uploads without<br \/>\n restriction to multiple webpages running maximum privileges. This could<br \/>\n allow an unauthenticated user to potentially obtain remote code<br \/>\nexecution on the server.<\/p>\n<p>Severity: 9.8 | CRITICAL<\/p>\n<p>Visit the link for more details, such as CVSS details, affected products, timeline, and more&#8230;\u00a0<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CVE ID : CVE-2026-1358 Published : Feb. 12, 2026, 9:24 p.m. | 1\u00a0hour, 3\u00a0minutes ago Description : Airleader Master versions 6.381 and prior allow for file uploads without restriction to multiple webpages running maximum privileges. This could allow an unauthenticated user to potentially obtain remote code execution on the server. Severity: 9.8 | CRITICAL Visit &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-77042","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/77042","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=77042"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/77042\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=77042"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=77042"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=77042"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}