{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-7182", "assignerOrgId": "4bb8329e-dd38-46c1-aafb-9bf32bcb93c6", "state": "PUBLISHED", "assignerShortName": "CERT-PL", "dateReserved": "2026-04-27T09:40:36.655Z", "datePublished": "2026-05-15T12:31:16.126Z", "dateUpdated": "2026-05-15T13:20:15.866Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "modules": ["export module"], "product": "Diagram", "vendor": "DHTMLX", "versions": [{"lessThan": "1.1.1", "status": "affected", "version": "1.0.0", "versionType": "semver"}]}], "credits": [{"lang": "en", "type": "finder", "value": "\u0141ukasz Jaworski (Pentest Limited)"}, {"lang": "en", "type": "finder", "value": "Tomasz Holeksa (Pentest Limited)"}], "datePublic": "2026-05-15T12:32:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Diagram's export module is vulnerable to Path Traversal in <i>src</i> attribute due to lack of HTML sanitization.&nbsp;An unauthenticated user could craft the html payload which could include\n local files from the server and display them in the generated pdf. <br><br>This issue was fixed in version 1.1.1."}], "value": "Diagram's export module is vulnerable to Path Traversal in src attribute due to lack of HTML sanitization.\u00a0An unauthenticated user could craft the html payload which could include\n local files from the server and display them in the generated pdf. \n\nThis issue was fixed in version 1.1.1."}], "impacts": [{"capecId": "CAPEC-126", "descriptions": [{"lang": "en", "value": "CAPEC-126 Path Traversal"}]}], "metrics": [{"cvssV4_0": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "baseScore": 9.2, "baseSeverity": "CRITICAL", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "HIGH", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N", "version": "4.0", "vulnAvailabilityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-22", "description": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "4bb8329e-dd38-46c1-aafb-9bf32bcb93c6", "shortName": "CERT-PL", "dateUpdated": "2026-05-15T12:32:29.401Z"}, "references": [{"tags": ["third-party-advisory"], "url": "https://cert.pl/en/posts/2026/05/CVE-2026-7182"}, {"tags": ["release-notes"], "url": "https://docs.dhtmlx.com/diagram/whats_new/#version-612"}, {"tags": ["product"], "url": "https://dhtmlx.com/docs/products/dhtmlxDiagram/"}], "source": {"discovery": "EXTERNAL"}, "title": "Path Traversal in Diagram", "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-05-15T13:20:09.546237Z", "id": "CVE-2026-7182", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-05-15T13:20:15.866Z"}}]}}

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-7182", "assignerOrgId": "4bb8329e-dd38-46c1-aafb-9bf32bcb93c6", "state": "PUBLISHED", "assignerShortName": "CERT-PL", "dateReserved": "2026-04-27T09:40:36.655Z", "datePublished": "2026-05-15T12:31:16.126Z", "dateUpdated": "2026-05-15T13:20:15.866Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "modules": ["export module"], "product": "Diagram", "vendor": "DHTMLX", "versions": [{"lessThan": "1.1.1", "status": "affected", "version": "1.0.0", "versionType": "semver"}]}], "credits": [{"lang": "en", "type": "finder", "value": "\u0141ukasz Jaworski (Pentest Limited)"}, {"lang": "en", "type": "finder", "value": "Tomasz Holeksa (Pentest Limited)"}], "datePublic": "2026-05-15T12:32:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Diagram's export module is vulnerable to Path Traversal in <i>src</i> attribute due to lack of HTML sanitization.&nbsp;An unauthenticated user could craft the html payload which could include\n local files from the server and display them in the generated pdf. <br><br>This issue was fixed in version 1.1.1."}], "value": "Diagram's export module is vulnerable to Path Traversal in src attribute due to lack of HTML sanitization.\u00a0An unauthenticated user could craft the html payload which could include\n local files from the server and display them in the generated pdf. \n\nThis issue was fixed in version 1.1.1."}], "impacts": [{"capecId": "CAPEC-126", "descriptions": [{"lang": "en", "value": "CAPEC-126 Path Traversal"}]}], "metrics": [{"cvssV4_0": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "baseScore": 9.2, "baseSeverity": "CRITICAL", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "HIGH", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N", "version": "4.0", "vulnAvailabilityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-22", "description": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "4bb8329e-dd38-46c1-aafb-9bf32bcb93c6", "shortName": "CERT-PL", "dateUpdated": "2026-05-15T12:32:29.401Z"}, "references": [{"tags": ["third-party-advisory"], "url": "https://cert.pl/en/posts/2026/05/CVE-2026-7182"}, {"tags": ["release-notes"], "url": "https://docs.dhtmlx.com/diagram/whats_new/#version-612"}, {"tags": ["product"], "url": "https://dhtmlx.com/docs/products/dhtmlxDiagram/"}], "source": {"discovery": "EXTERNAL"}, "title": "Path Traversal in Diagram", "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-7182", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-05-15T13:20:09.546237Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-05-15T13:20:12.014Z"}}]}}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Diagram's export module is vulnerable to Path Traversal in src attribute due to lack of HTML sanitization.\u00a0An unauthenticated user could craft the html payload which could include\n local files from the server and display them in the generated pdf. \n\nThis issue was fixed in version 1.1.1."}], "id": "CVE-2026-7182", "lastModified": "2026-05-15T14:56:18.253", "metrics": {"cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "availabilityRequirement": "NOT_DEFINED", "baseScore": 9.2, "baseSeverity": "CRITICAL", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "HIGH", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "cvd@cert.pl", "type": "Secondary"}]}, "published": "2026-05-15T13:16:19.250", "references": [{"source": "cvd@cert.pl", "url": "https://cert.pl/en/posts/2026/05/CVE-2026-7182"}, {"source": "cvd@cert.pl", "url": "https://dhtmlx.com/docs/products/dhtmlxDiagram/"}, {"source": "cvd@cert.pl", "url": "https://docs.dhtmlx.com/diagram/whats_new/#version-612"}], "sourceIdentifier": "cvd@cert.pl", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "cvd@cert.pl", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[1.0.0,1.1.1)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "Diagram", "source": "cna", "vendor": "DHTMLX"}, "product": "diagram", "vendor": "dhtmlx"}], "created": "2026-05-15T15:15:46.337406+00:00", "updated": "2026-05-17T17:01:43.930011+00:00", "vendors": ["dhtmlx", "dhtmlx$PRODUCT$diagram"]}