PT-2026-21157 · Unknown · Vanquish User Extra Fields
Publicado
2026-02-20
·
Atualizado
2026-02-22
·
CVE-2025-69376
CVSS v3.1
8.6
Alta
| Vetor | AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
vanquish User Extra Fields versions prior to 17.1
Description
The software contains a flaw related to improper limitation of a pathname to a restricted directory, also known as a 'Path Traversal' issue. This allows for potential unauthorized access or manipulation of files outside the intended directory.
Recommendations
Update to version 17.1 or later.
Correção
Path traversal
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Vanquish User Extra Fields