PT-2026-1098 · Qfiling · Qfiling
Long Hà
·
Published
2026-01-02
·
Updated
2026-01-07
·
CVE-2025-59384
CVSS v2.0
10
High
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Qfiling versions prior to 3.13.1
Description
A path traversal issue exists in Qfiling that could allow remote attackers to read the contents of unexpected files or system data. Approximately 3257k+ instances are potentially exposed. The vulnerability allows access to files outside the intended directory through manipulation of file paths.
Recommendations
Update Qfiling to version 3.13.1 or later.
Fix
Path traversal
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Qfiling