CVE-2025-51475 | transformeroptimus superagi 0.0.14 File Upload Endpoint os.path.join/get_root_input_dir path traversal

Inserito da Angelo Barbosa | Lug 22, 2025 | CVE

A vulnerability was found in transformeroptimus superagi 0.0.14. It has been declared as critical. Affected by this vulnerability is the function os.path.join/get_root_input_dir of the component File Upload Endpoint. The manipulation leads to path traversal.

This vulnerability is known as CVE-2025-51475. The attack can be launched remotely. There is no exploit available.

CVE-2025-51475 | transformeroptimus superagi 0.0.14 File Upload Endpoint os.path.join/get_root_input_dir path traversal

Post correlati

CVE-2023-6843 | easy.jobs Best Recruitment Plugin up to 2.4.6 on WordPress Setting access control

CVE-2025-1228 | olajowon Loggrove up to e428fac38cc480f011afcb1d8ce6c2bad378ddd6 Logfile Update ?page=1&logfile=LOG_Monitor path path traversal (IBJSXS)

CVE-2025-26577 | daxiawp DX-auto-publish Plugin up to 1.2 on WordPress cross-site request forgery

CVE-2024-2791 | Metform Elementor Contact Form Builder Plugin up to 3.8.5 on WordPress Widgets cross site scripting