CVE-2025-25295 | HumanSignal label-studio up to 1.0.9 image path traversal (GHSA-rgv9-w7jp-m23g)

Inserito da Angelo Barbosa | Feb 15, 2025 | CVE

A vulnerability, which was classified as critical, was found in HumanSignal label-studio up to 1.0.9. This affects an unknown part. The manipulation of the argument image leads to path traversal.

This vulnerability is uniquely identified as CVE-2025-25295. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-25295 | HumanSignal label-studio up to 1.0.9 image path traversal (GHSA-rgv9-w7jp-m23g)

Post correlati

CVE-2024-0360 | PHPGurukul Hospital Management System 1.0 edit-doctor-specialization.php doctorspecilization sql injection

CVE-2024-47305 | Dnesscarkey Use Any Font Plugin up to 6.3.08 on WordPress cross-site request forgery

CVE-2024-27918 | Coder OIDC Authentication improper authentication

CVE-2024-44278 | Apple iOS/iPadOS information disclosure