CVE-2025-58438 | internetarchive up to 5.5.0 File.download path traversal

Inserito da Angelo Barbosa | Set 6, 2025 | CVE

A vulnerability has been found in internetarchive up to 5.5.0 and classified as critical. Affected by this issue is the function File.download. Performing manipulation results in path traversal.

This vulnerability was named CVE-2025-58438. The attack may be initiated remotely. There is no available exploit.

The affected component should be upgraded.

CVE-2025-58438 | internetarchive up to 5.5.0 File.download path traversal

Post correlati

CVE-2024-39932 | Gogs up to 0.13.0 Change Preview argument injection

CVE-2024-4860 | RSS Aggregator Plugin up to 4.23.8 on WordPress GET Parameter notice_id cross site scripting

CVE-2023-47560 | QNAP QuMagie prior 2.2.1 command injection (qsa-23-23)

CVE-2025-53546 | RSSNext Folo auto-fix-lint-format-commit.yml pull_request_target inclusion of functionality from untrusted control sphere