exploitDog

GHSA-g5pm-7qx6-f2hg

Опубликовано: 19 дек. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 6.4

Описание

A Directory Traversal vulnerability in the Static Asset Proxy Endpoint in Mintlify Platform before 2025-11-15 allows remote attackers to inject arbitrary web script or HTML via a crafted URL containing path traversal sequences.

A Directory Traversal vulnerability in the Static Asset Proxy Endpoint in Mintlify Platform before 2025-11-15 allows remote attackers to inject arbitrary web script or HTML via a crafted URL containing path traversal sequences.

Ссылки

EPSS

Процентиль: 26%

0.00091

Низкий

6.4 Medium

CVSS3

CVE ID

Дефекты

CWE-24

Связанные уязвимости

CVE-2025-67845

CVSS3: 6.4

nvd

около 2 месяцев назад

A Directory Traversal vulnerability in the Static Asset Proxy Endpoint in Mintlify Platform before 2025-11-15 allows remote attackers to inject arbitrary web script or HTML via a crafted URL containing path traversal sequences.

EPSS

Процентиль: 26%

0.00091

Низкий

6.4 Medium

CVSS3

CVE ID

Дефекты

CWE-24