HarborGuard / CVE
Back to search
HIGHCVE-2026-45089Published Modified CNA GitHub_M

CVE-2026-45089: Dalfox: Unauthenticated Arbitrary File Create/Append via `output` Option in Dalfox Server Mode

Dalfox is a powerful open-source XSS scanner and utility focused on automation. Prior to 2.13.0, when dalfox is run in REST API server mode, the output, output-all, and debug fields in model.Options are JSON-tagged and deserialized directly from the attacker's request body, then propagated unchanged through dalfox.Initialize into the scan engine's logging path. The logger opens the attacker-supplied path with os.O_APPEND|os.O_CREATE|os.O_WRONLY and writes scan log lines to it. Critically, this file write block lives outside the IsLibrary guard in DalLog, so it executes even in server/library mode where file output was never intended to operate. Because no API key is required in the default configuration, an unauthenticated network caller can create or append to any file writable by the dalfox process on the host filesystem. This vulnerability is fixed in 2.13.0.

HarborGuard Analysis

HarborGuard analysis

Synopsis

An unauthenticated arbitrary file create/append vulnerability exists in Dalfox, the open-source XSS scanner, when it is run in REST API server mode. A remote attacker can send a crafted JSON request body that supplies an attacker-controlled file path, which the server then opens and writes scan log output to with no authentication check in the default configuration. Successful exploitation lets an attacker create or append to any file writable by the dalfox process on the host filesystem, enabling log poisoning, configuration tampering, or privilege escalation depending on file permissions. No fix version has been published yet; HarborGuard tracks this advisory and will make a patched-image rebuild available as soon as upstream ships a fix.

HarborGuard Coverage

Detection

Detection of CVE-2026-45089 is available across every HarborGuard environment: the CVE is ingested from upstream advisory feeds within minutes of publication and matched against all customer images, including custom-built images that bundle the dalfox binary. Any image found to carry a vulnerable version of dalfox (earlier than 2.13.0) is flagged in the customer's scan results immediately.

Available
Triage

Triage is available with CVSS v3.1 scoring at 8.2 (HIGH), surfaced alongside per-environment compliance policy weighting so teams can calibrate urgency against their own risk thresholds. Findings are routed to the appropriate inbox or ticket queue within each customer organization based on configured escalation rules.

Available
Patch

Because no fix version has been published upstream, HarborGuard re-checks this advisory on every ingest cycle and will make a patched-image rebuild available the moment a fix is released. In the meantime, customers can apply compensating controls through HarborGuard network-policy recommendations to restrict inbound access to the dalfox server port.

Pending upstream

Exploit Conditions

  • Network reachabilityRequired

    The attacker must reach the dalfox REST API server over the network; default configurations bind the listener to a network interface with no firewall restriction.

  • AuthenticationNot required

    No API key or credential is required in the default dalfox server configuration, so any network caller can submit a malicious request body.

  • Victim interactionNot required

    Exploitation is fully server-side; no user action or social engineering is needed to trigger the file write.

  • Attack complexityDetail

    The exploit is reliable and condition-free: the attacker sends a single well-formed JSON request and the server writes to the supplied path without any race condition or environmental dependency.

Blast Radius

  • Attacker creates or appends arbitrary content to any file writable by the dalfox process, including sensitive system files such as cron jobs, authorized_keys, or web-served content.
  • Attacker poisons log files or configuration files consumed by other processes on the same host, potentially causing those processes to execute attacker-supplied instructions.
  • Attacker causes minor service disruption by filling disk space through repeated large appends, degrading availability of the dalfox server and co-located services.

How HarborGuard Handles This

Available on HarborGuard: because no upstream fix has been published for CVE-2026-45089, HarborGuard continuously re-checks the advisory on every ingest cycle and will automatically make a patched-image rebuild available as soon as version 2.13.0 or a later fix release appears upstream. For environments with auto-remediation enabled, that rebuild will trigger a regression test run and open a PR against affected workloads without manual intervention. While no patch is available, recommended compensating controls include applying a Kubernetes or host-level network policy that restricts inbound connections to the dalfox server port to known trusted sources only, adding an egress filter to prevent the dalfox process from writing to sensitive filesystem paths outside its expected working directory, and disabling server mode entirely in environments where it is not actively needed. HarborGuard flags any image carrying dalfox earlier than 2.13.0 as HIGH severity so it surfaces at the top of triage queues and is not silently deprioritized.

See how HarborGuard automates this

Metrics

CVSS v3.1
8.2
Severity
HIGH
Fixed in
Affected Products
1
Affected packages
  • hahwul / dalfox
    < 2.13.0
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L
References