VYPR
← All advisories
Unrated severityNVD Advisory· Published Mar 23, 2026· Updated Mar 25, 2026

Census CSWeb path traversal

CVE-2025-60946

Description

Census CSWeb 8.0.1 allows arbitrary file path input. A remote, authenticated attacker could access unintended file directories. Fixed in 8.1.0 alpha.

Affected products

2
  • Census/CSWebllm-fuzzy
    Range: <=8.0.1
  • Census/CSWebv5
    Range: 8.0.1

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

News mentions

0

No linked articles in our index yet.