Количество 2
Количество 2
CVE-2025-6278
A vulnerability classified as critical was found in Upsonic up to 0.55.6. This vulnerability affects the function os.path.join of the file markdown/server.py. The manipulation of the argument file.filename leads to path traversal. The exploit has been disclosed to the public and may be used.
GHSA-8jf4-fcjr-68c2
Upsonic is vulnerable to Path Traversal attack through its os.path.join function
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-6278 A vulnerability classified as critical was found in Upsonic up to 0.55.6. This vulnerability affects the function os.path.join of the file markdown/server.py. The manipulation of the argument file.filename leads to path traversal. The exploit has been disclosed to the public and may be used. | CVSS3: 5.5 | 0% Низкий | 8 месяцев назад |
| GHSA-8jf4-fcjr-68c2 Upsonic is vulnerable to Path Traversal attack through its os.path.join function | CVSS3: 5.5 | 0% Низкий | 8 месяцев назад |
Уязвимостей на страницу