Is CVE-2026-37637 being exploited?

No public exploit is currently tracked.

How severe is CVE-2026-37637?

CVE-2026-37637 has a CVSS v3 severity of CRITICAL (9.1).

Back

Description

An issue in Alexantr filemanager v.1.0 allows a remote attacker to execute arbitrary code via the filemanager.php component