VYPR

Pebble Templates

by Pebbletemplates

CVEs (1)

  • CVE-2025-1686MedFeb 27, 2025
    risk 0.37cvss 6.8epss 0.01

    Versions of the package io.pebbletemplates:pebble from 0 and before 4.1.0 are vulnerable to External Control of File Name or Path via the include tag. A high privileged attacker can access sensitive local files by crafting malicious notification templates that leverage this tag…