CVE-2025-56816 | Datart 1.0.0-rc.3 YAML File jdbc-driver-ext.yml load/loadAs path traversal

Inserito da Angelo Barbosa | Set 24, 2025 | CVE

A vulnerability marked as critical has been reported in Datart 1.0.0-rc.3. The affected element is the function load/loadAs of the file config/jdbc-driver-ext.yml of the component YAML File Handler. Performing manipulation results in path traversal.

This vulnerability is cataloged as CVE-2025-56816. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-56816 | Datart 1.0.0-rc.3 YAML File jdbc-driver-ext.yml load/loadAs path traversal

Post correlati

CVE-2024-51564 | FreeBSD hda Audio Driver improper validation of specified index, position, or offset in input

CVE-2024-22449 | Dell PowerScale OneFS up to 9.6.0.x missing authentication (dsa-2024-028)

CVE-2024-31670 | rizin up to 0.6.2 dyldcache.c buffer overflow

CVE-2024-10161 | PHPGurukul Boat Booking System 1.0 Update Boat Image Page change-image.php image unrestricted upload