CVE-2025-27409 | laurent22 joplin up to 3.3.2 findLocalFile path traversal (GHSA-5xv6-7jm3-fmg5)

Inserito da Angelo Barbosa | Apr 30, 2025 | CVE

A vulnerability was found in laurent22 joplin up to 3.3.2. It has been rated as critical. Affected by this issue is the function findLocalFile. The manipulation leads to path traversal.

This vulnerability is handled as CVE-2025-27409. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-27409 | laurent22 joplin up to 3.3.2 findLocalFile path traversal (GHSA-5xv6-7jm3-fmg5)

Post correlati

CVE-2024-7063 | ElementsKit Pro Plugin up to 3.6.6 on WordPress information disclosure

CVE-2024-8246 | Post Form Plugin up to 2.8.11 on WordPress Privilege Escalation

CVE-2024-55628 | OISF Suricata up to 7.0.7 DNS Message amplification (ID 7280)

CVE-2025-45021 | PHPGurukul Directory Management System 2.0 admin/edit-directory.php email sql injection