High severity7.2NVD Advisory· Published Aug 20, 2025· Updated Jun 17, 2026
CVE-2025-54926
CVE-2025-54926
Description
CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could cause remote code execution when an authenticated attacker with admin privileges uploads a malicious file over HTTP which then gets executed.
Affected products
1Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.