CVE-2025-54433 | Bugsink up to 1.4.2/1.5.4/1.6.3/1.7.3 event_id path traversal (GHSA-q78p-g86f-jg6q)

Inserito da Angelo Barbosa | Lug 30, 2025 | CVE

A vulnerability was found in Bugsink up to 1.4.2/1.5.4/1.6.3/1.7.3 and classified as critical. Affected by this issue is some unknown functionality. The manipulation of the argument event_id leads to path traversal.

This vulnerability is handled as CVE-2025-54433. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-54433 | Bugsink up to 1.4.2/1.5.4/1.6.3/1.7.3 event_id path traversal (GHSA-q78p-g86f-jg6q)

Post correlati

CVE-2024-0802 | Mitsubishi Electric MELSEC-Q/MELSEC-L Packet incorrect pointer scaling (icsa-24-074-14)

CVE-2024-0183 | RRJ Nueva Ecija Engineer Online Portal 1.0 NIA Office /admin/students.php cross site scripting

CVE-2024-26023 | Buffalo WSR-A2533DHP2 os command injection

CVE-2022-49733 | Linux Kernel up to 5.4.214/5.10.147/5.15.67/5.19.8 ALSA snd_pcm_oss_sync null pointer dereference