CVE-2026-33531 — InvenTree is an Open Source Inventory Management System. Prior to version…

April 01, 2026 21:56 /HIGH

CVE Notify vulnerabilitycvetoolsdata-breach

🚨 CVE-2026-33531 InvenTree is an Open Source Inventory Management System. Prior to version 1.2.6, a path traversal vulnerability in the report template engine allows a…

https://github.com/inventree/InvenTree/pull/11579

What This Means For You

New vulnerability disclosed — verify if your stack is exposed.
New tool or resource available — evaluate for your security workflow.

Indicators of Compromise

ID	Type	Indicator
CVE-2026-33531	Path Traversal	InvenTree version prior to 1.2.6, report template engine

Source & Attribution

Source Platform	Telegram
Channel	CVE Notify
Channel ID	1129491012
Message ID	157602
Published	April 01, 2026 at 21:56 UTC
Original Link	https://github.com/inventree/InvenTree/pull/11579

This content was curated and summarized by Shimi's Cyber World for informational purposes. It is not copied or republished in full. All intellectual property rights remain with the original author and source.

Believe this infringes your rights? Submit a takedown request.

Found this interesting? Follow us on LinkedIn to stay ahead.

Follow Shimi Cohen Follow Shimi's Cyber World