A vulnerability, which was classified as critical , was found in Krajowa Izba Rozliczeniowa SzafirHost up to 1.2.0 . Affected by this issue is some unknown functionality of the component JAR File Handler . Executing a manipulation can lead to unrestricted upload. This vulnerability is handled as CVE-2026-44088 . The attack can be executed remotely. There is not any exploit available. You should upgrade the affected component.