exploitDog

GHSA-2v6g-667x-w6wm

Опубликовано: 09 июн. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in spicethemes Spice Blocks allows Path Traversal. This issue affects Spice Blocks: from n/a through 2.0.7.2.

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in spicethemes Spice Blocks allows Path Traversal. This issue affects Spice Blocks: from n/a through 2.0.7.2.

Ссылки

EPSS

Процентиль: 22%

0.00073

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2025-48130

CVSS3: 7.5

nvd

8 месяцев назад

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in spicethemes Spice Blocks allows Path Traversal. This issue affects Spice Blocks: from n/a through 2.0.7.2.

EPSS

Процентиль: 22%

0.00073

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-22