changedetection.io is a free open source web page change detection tool. Prior to 0.55.1, the vulnerability is caused by trusting attacker-controlled snapshot paths restored from backup files. The vulnerable flow starts in the backup restore logic. When a backup ZIP is restored, the application extracts the archive and copies each restored watch UUID directory directly into the live datastore using shutil.copytree(entry.path, dst_dir). This preserves attacker-controlled files inside the restored watch directory, including history.txt. After restore, the application parses history.txt in the watch history property and returns the contents of the targeted local file. This vulnerability is fixed in 0.55.1.
References
| Link | Resource |
|---|---|
| https://github.com/dgtlmoon/changedetection.io/security/advisories/GHSA-8757-69j2-hx56 | Exploit Mitigation Vendor Advisory |
| https://github.com/pocket-id/pocket-id/security/advisories/GHSA-w6p7-2fxx-4f44 | Exploit Mitigation Vendor Advisory Not Applicable |
Configurations
History
15 May 2026, 14:20
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Webtechnologies
Webtechnologies changedetection |
|
| CPE | cpe:2.3:a:webtechnologies:changedetection:*:*:*:*:*:*:*:* | |
| References | () https://github.com/dgtlmoon/changedetection.io/security/advisories/GHSA-8757-69j2-hx56 - Exploit, Mitigation, Vendor Advisory | |
| References | () https://github.com/pocket-id/pocket-id/security/advisories/GHSA-w6p7-2fxx-4f44 - Exploit, Mitigation, Vendor Advisory, Not Applicable |
13 May 2026, 16:16
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
12 May 2026, 18:17
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2026-05-12 18:17
Updated : 2026-05-15 14:20
NVD link : CVE-2026-43891
Mitre link : CVE-2026-43891
CVE.ORG link : CVE-2026-43891
JSON object : View
Products Affected
webtechnologies
- changedetection
CWE
CWE-73
External Control of File Name or Path