CVE-2025-51661 | FileCodeBox up to 2.2 POST core/storage.py SystemFileStorage.save_file path traversal (ID 349)

Inserito da Angelo Barbosa | Nov 19, 2025 | CVE

A vulnerability labeled as critical has been found in FileCodeBox up to 2.2. This vulnerability affects the function SystemFileStorage.save_file of the file core/storage.py of the component POST Handler. Executing manipulation can lead to path traversal.

This vulnerability appears as CVE-2025-51661. The attack may be performed from remote. There is no available exploit.

CVE-2025-51661 | FileCodeBox up to 2.2 POST core/storage.py SystemFileStorage.save_file path traversal (ID 349)

Post correlati

CVE-2025-5736 | TOTOLINK X15 1.0.0-B20230714.1105 HTTP POST Request /boafrm/formNtp submit-url buffer overflow

CVE-2024-6632 | Fortra FileCatalyst Workflow up to 5.1.6 Build 139 sql injection

CVE-2024-5020 | Photo Gallery, Sliders, Proofing and Themes Plugin FancyBox JavaScript Library cross site scripting

CVE-2022-50239 | Linux Kernel up to 5.10.151/5.15.75/6.0.5 qcom_cpufreq_krait_name_version buffer overflow