CVE-2025-27150 | Enalean Tuleap Community Edition/Tuleap Enterprise Edition collect-system-data file information disclosure (GHSA-jc5r-684x-j46q)

Inserito da Angelo Barbosa | Mar 4, 2025 | CVE

A vulnerability was found in Enalean Tuleap Community Edition and Tuleap Enterprise Edition. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component collect-system-data. The manipulation leads to file and directory information exposure.

This vulnerability is known as CVE-2025-27150. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-27150 | Enalean Tuleap Community Edition/Tuleap Enterprise Edition collect-system-data file information disclosure (GHSA-jc5r-684x-j46q)

Post correlati

CVE-2024-42621 | Pligg CMS 2.0.2 /admin/admin_editor.php cross-site request forgery

CVE-2023-50071 | SourceCodester Customer Support System 1.0 ajax.php id/name sql injection

CVE-2024-51765 | HPE Cray System Management Software prior COS-2.5.146/COS 23.11.1/CLE 7.0.UP04.PS19 improper authorization

CVE-2024-39781 | Wavlink AC3000 M33A8.V5030.210505 adm.cgi sch_reboot restart_hour command injection (TALOS-2024-2033)