CVE-2026-38751 | THREATINT

Description

OpenSTAManager version 2.10 and earlier contains an arbitrary file upload vulnerability in the module update functionality (modules/aggiornamenti/upload_modules.php)

PUBLISHED Reserved 2026-04-06 | Published 2026-05-04 | Updated 2026-05-05 | Assigner mitre

References

github.com/devcode-it/openstamanager

github.com/fuutianyii/poc

cve.org (CVE-2026-38751)

nvd.nist.gov (CVE-2026-38751)

Download JSON