VYPR

Cola Dnslog

by Cola Dnslog

CVEs (1)

  • CVE-2025-57403HigDec 26, 2025
    risk 0.49cvss 7.5epss 0.01

    Cola Dnslog v1.3.2 is vulnerable to Directory Traversal. When a DNS query for a TXT record is processed, the application concatenates the requested URL (or a portion of it) directly with a base path using os.path.join. This bypass allows directory traversal or absolute path…