Skip to main content

alf.io CVE-2026-41412

MEDIUM
Path Traversal (CWE-22)
2026-06-02 security-advisories@github.com
4.9
CVSS 3.1 · GitHub Advisory
Share

Severity by source

GitHub Advisory PRIMARY
4.9 MEDIUM
AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Primary rating from GitHub Advisory · only source for this CVE.

CVSS VectorGitHub Advisory

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None

Lifecycle Timeline

1
Analysis Generated
Jun 02, 2026 - 23:32 vuln.today

DescriptionGitHub Advisory

alf.io is an open source ticket reservation system for conferences, trade shows, workshops, and meetups. Prior to version 2.0-M5-2606, the alf.io extension sandbox injects a fully-functional HTTP client (simpleHttpClient) into every extension script's scope. The postFileAndSaveResponse() method accepts an arbitrary filesystem path as its file parameter and reads the file contents using new FileInputStream(file) with no path validation, directory restriction, or allowlist. A malicious extension script can read any file accessible to the JVM process user and exfiltrate it to an attacker-controlled server via HTTP POST. Version 2.0-M5-2606 patches the issue.

AnalysisAI

Arbitrary file read via path traversal in alf.io's extension sandbox allows a high-privileged user to silently exfiltrate any file accessible to the JVM process to an attacker-controlled server. All versions prior to 2.0-M5-2606 automatically inject an unrestricted simpleHttpClient into every extension script scope, where postFileAndSaveResponse() constructs a raw FileInputStream from a caller-supplied path with no validation, directory restriction, or allowlist. No public exploit identified at time of analysis; the PR:H CVSS prerequisite (extension management rights) meaningfully constrains the attack surface but does not eliminate risk, particularly in multi-tenant or insider-threat scenarios.

Technical ContextAI

alf.io is a Java-based open source event ticketing and reservation platform that exposes a scripting extension system for customizing platform behavior. The sandbox runtime injects a helper object, simpleHttpClient, into every extension script's execution scope. The postFileAndSaveResponse() method within this client directly instantiates a java.io.FileInputStream using the caller-supplied file parameter as a raw string path, performing no canonical path resolution, no parent-directory allowlist check, and no chroot-style restriction. This is a textbook CWE-22 (Improper Limitation of a Pathname to a Restricted Directory - Path Traversal) flaw: the method trusts the caller-controlled input to stay within an intended directory, but no enforcement mechanism enforces that assumption. Because the read occurs in the context of the JVM process user, any file that OS-level permissions expose to that user - application configuration files, database credentials, TLS private keys, cloud provider tokens, or OS files such as /etc/passwd - can be read and exfiltrated via HTTP POST to an arbitrary endpoint. No CPE string was present in the source data; affected versions are identified by the GitHub advisory as all releases prior to 2.0-M5-2606.

Affected ProductsAI

All alf.io releases prior to version 2.0-M5-2606 are affected. The vulnerability resides in the extension sandbox component, which is part of the core platform and present across the pre-release milestone series. No CPE string was provided in the available source data; affected instances should be identified by comparing the deployed version against the patched release. Full details are documented in the vendor GitHub Security Advisory at https://github.com/alfio-event/alf.io/security/advisories/GHSA-6m62-53cw-4373.

RemediationAI

Upgrade alf.io to version 2.0-M5-2606 or later, which is the vendor-confirmed patched release documented at https://github.com/alfio-event/alf.io/security/advisories/GHSA-6m62-53cw-4373. If immediate upgrade is not feasible, restrict extension creation and modification rights to the smallest possible set of fully trusted administrators, since PR:H access to the extension system is the sole prerequisite for exploitation - reducing that attack surface directly reduces risk. As an additional compensating control, run the alf.io JVM process under a dedicated least-privilege OS user with a tightly scoped filesystem footprint, limiting which files are exposed even if the vulnerability is triggered; note this does not prevent exploitation but caps the blast radius of any exfiltration. Where network egress controls are available, restrict outbound HTTP/HTTPS connections from the alf.io host to known-good destinations, which would block the exfiltration step even if the file read is completed. Be aware that disabling the extension feature entirely, if operationally acceptable, eliminates the attack surface entirely.

Share

CVE-2026-41412 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy