High severity7.5NVD Advisory· Published May 13, 2025· Updated Jun 17, 2026
CVE-2025-28055
CVE-2025-28055
Description
upset-gal-web v7.1.0 /api/music/v1/cover.ts contains an arbitrary file read vulnerabilit
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- upset-gal-web/upset-gal-webdescription
- Range: =7.1.0
Patches
Vulnerability mechanics
References
2- github.com/shinnku-nikaidou/upset-gal-web/issues/132nvdExploitIssue Tracking
- gist.github.com/LTLTLXEY/eb5e07436e0fcaca9747cd4467055f14nvdThird Party Advisory
News mentions
0No linked articles in our index yet.