Medium severity4.3NVD Advisory· Published Mar 30, 2025· Updated Apr 15, 2026
CVE-2025-2961
CVE-2025-2961
Description
A vulnerability classified as problematic was found in opensolon up to 3.1.0. This vulnerability affects the function render_mav of the file /aa of the component org.noear.solon.core.handle.RenderManager. The manipulation of the argument template with the input ../org/example/HelloApp.class leads to path traversal: '../filedir'. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.noear:solon-viewMaven | <= 3.1.0 | — |
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6- github.com/advisories/GHSA-2m4q-2c6r-hmc3ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2025-2961ghsaADVISORY
- github.com/Q16G/cve_detail/blob/main/solon/templateRCE.mdnvdWEB
- vuldb.comnvdWEB
- vuldb.comnvdWEB
- vuldb.comnvdWEB
News mentions
0No linked articles in our index yet.