CVE-2025-46559 | misskey up to 2025.2.1 Mk:api path traversal

Inserito da Angelo Barbosa | Mag 5, 2025 | CVE

A vulnerability has been found in misskey and classified as critical. This vulnerability affects the function Mk:api. The manipulation leads to path traversal.

This vulnerability was named CVE-2025-46559. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-46559 | misskey up to 2025.2.1 Mk:api path traversal

Post correlati

CVE-2023-7095 | Totolink A7100RU 7.4cu.2313_B20191024 HTTP POST Request cstecgi.cgi main flag buffer overflow

CVE-2024-25952 | Dell PowerScale OneFS up to 9.3.0.0/9.4.0.16/9.5.0.7/9.7.0.0/9.7.0.1 symlink (dsa-2024-115)

CVE-2024-11252 | Social Sharing Plugin up to 3.3.69 on WordPress heateor_mastodon_share cross site scripting

CVE-2025-4839 | itwanger paicoding 1.0.0/1.0.1/1.0.2/1.0.3 CrossUtil.java cross-domain policy