CVE-2026-6211

Published Jun 12, 2026

Last updated a day ago

CVSS high 8.7

Overview

Description
Unrestricted upload of file with dangerous type vulnerability in Global IT Informatics Services Inc. WEOLL allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects WEOLL: from 2.0.9 before 3.2.45.33.
Source
iletisim@usom.gov.tr
NVD status
Deferred

Risk scores

CVSS 3.1

Type
Primary
Base score
8.7
Impact score
5.8
Exploitability score
2.3
Vector string
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N
Severity
HIGH

Weaknesses

iletisim@usom.gov.tr
CWE-434

Social media

Hype score
Not currently trending

  1. 🚨 HIGH SEVERITY: CVE-2026-6211 (CVSS 8.7) Unrestricted file upload flaw in Global IT Informatics WEOLL v2.0.9-3[.]2[.]45[.]33. Allows attackers to bypass ACLs & upload dangerous files. Patch to v3.2.45.33+ immediately. #CVE #Vulnerability #PatchNow https://t.co/QUJUA0oL

    @DFIR_Lab

    13 Jun 2026

    15 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References

Sources include official advisories and independent security research.