Unrated severityNVD Advisory· Published Nov 3, 2025· Updated Nov 3, 2025
CVE-2025-50735
CVE-2025-50735
Description
Directory traversal vulnerability in NextChat thru 2.16.0 due to the WebDAV proxy failing to canonicalize or reject dot path segments in its catch-all route, allowing attackers to gain sensitive information via authenticated or anonymous WebDAV endpoints.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: <=2.16.0
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.