CVE-2025-15066

Name of the Vulnerable Software and Affected Versions Innorix WP (affected versions not specified)

Description A path traversal and missing authorization issue exists in Innorix WP. The issue allows path traversal if the 'exam' directory exists under the product’s installation directory (e.g., innorix/exam). This can lead to arbitrary file download.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.