{"document":{"category":"csaf_vex","csaf_version":"2.0","title":"CVE-2026-36723: An unrestricted file rename vulnerability in the /api/create-user component of bookcars v8","publisher":{"category":"vendor","name":"HarborGuard Database","namespace":"https://database.harborguard.co"},"tracking":{"id":"CVE-2026-36723","status":"final","version":"1","initial_release_date":"2026-06-09T00:00:00.000Z","current_release_date":"2026-06-10T17:28:08.932Z","revision_history":[{"date":"2026-06-09T00:00:00.000Z","number":"1","summary":"Initial machine-readable export from HarborGuard."}]},"distribution":{"tlp":{"label":"WHITE"},"text":"Public CVE data; freely redistributable."},"notes":[{"category":"description","text":"An unrestricted file rename vulnerability in the /api/create-user component of bookcars v8.3 allows authenticated attackers to leverage directory traversal sequences to move arbitrary files from temporary storage to arbitrary locations on the server filesystem. This enables unauthorized access to sensitive files, the overwriting of critical application files, and remote code execution (RCE).","title":"CVE description"}],"references":[{"category":"self","summary":"CVE-2026-36723 on HarborGuard Database","url":"https://database.harborguard.co/cve/CVE-2026-36723"},{"category":"external","summary":"CVE Record","url":"https://www.cve.org/CVERecord?id=CVE-2026-36723"},{"category":"external","summary":"github.com","url":"https://github.com/CC-T-454455/Vulnerabilities/tree/master/bookcars/vulnerability-17"}]},"product_tree":{"branches":[{"category":"vendor","name":"n/a","branches":[{"category":"product_name","name":"n/a","branches":[{"category":"product_version","name":"n/a","product":{"name":"n/a n/a n/a","product_id":"CSAFPID-1","product_identification_helper":{"cpe":"cpe:2.3:a:n\\/a:n\\/a:n\\/a:*:*:*:*:*:*:*"}}}]}]}]},"vulnerabilities":[{"cve":"CVE-2026-36723","title":"An unrestricted file rename vulnerability in the /api/create-user component of bookcars v8","notes":[{"category":"description","text":"An unrestricted file rename vulnerability in the /api/create-user component of bookcars v8.3 allows authenticated attackers to leverage directory traversal sequences to move arbitrary files from temporary storage to arbitrary locations on the server filesystem. This enables unauthorized access to sensitive files, the overwriting of critical application files, and remote code execution (RCE).","title":"CVE description"}],"product_status":{"known_affected":["CSAFPID-1"]},"scores":[{"cvss_v3":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH"},"products":["CSAFPID-1"]}],"remediations":[{"category":"none_available","details":"No fixed version is published yet. Monitor the upstream advisory.","product_ids":["CSAFPID-1"]}]}]}