Vulnerabilities

CVE-2025-25478

by Fred · 28/02/2025

The account file upload functionality in Syspass 3.2.x fails to properly handle special characters in filenames. This mismanagement leads to the disclosure of the web application s source code, exposing sensitive information such as the database password.

Assigner : [email protected]

More information : https://github.com/sysentr0py/CVEs/tree/main/CVE-2025-25478

Similar

Tags: Cybersecurity Alert