CVE-2026-34604

Name of the Vulnerable Software and Affected Versions: Tina versions prior to 2.2.2

Description: The @tinacms/graphql component uses string-based path containment checks in FilesystemBridge, which do not resolve symlink or junction targets. If a symlink or junction exists within the allowed content root, paths can be considered 'inside' the base even if the actual filesystem target is outside it. This allows FilesystemBridge.get(), put(), delete(), and glob() to operate on files outside the intended root. The issue stems from a gap between lexical path string checks and the filesystem following link targets during I/O operations. This is exploitable through Tina's GraphQL/local database flow, where a validated path is built from user-controlled relativePath, and database write/delete operations then call the bridge. The vulnerability allows arbitrary file read/write and potential deletion outside the configured content root, bypassing recent path-traversal fixes.

Recommendations: Update to version 2.2.2 or later.