CVE-2026-43872

Published
View on NVD ↗
CVSS v3
N/A
CVSS v2
N/A
Affected
1
PROJECT

Description

Actual is an open-source personal finance application. Prior to version 26.5.0, several endpoints are affected by a path traversal vulnerability. Version 26.5.0 fixes the issue.

actualbudget/actual
actualbudget/actual
A local-first personal finance app
GitHubGitHub
27K