A vulnerability identified as critical has been detected in pgAdmin 4 up to 9.14 . Impacted is an unknown function of the component FileBackedSessionManager . The manipulation leads to path traversal. This vulnerability is traded as CVE-2026-7818 . An attack has to be approached locally. There is no exploit available. You should upgrade the affected component.