CVE-2025-55988 | DreamFactory Core 1.0.3 RestController.php path traversal

Inserito da Angelo Barbosa | Mar 20, 2026 | CVE

A vulnerability classified as critical has been found in DreamFactory Core 1.0.3. The affected element is an unknown function of the file /Controllers/RestController.php. The manipulation leads to path traversal.

This vulnerability is uniquely identified as CVE-2025-55988. The attack can only be initiated within the local network. No exploit exists.

It is recommended to apply a patch to fix this issue.

CVE-2025-55988 | DreamFactory Core 1.0.3 RestController.php path traversal

Post correlati

CVE-2024-46331 | ModStartCMS 8.8.0 URL /admin/login redirect

CVE-2025-14986 | Temporal up to 1.27.3/1.28.1/1.29.1 StartWorkflowExecutionRequest Namespace authorization

CVE-2023-52203 | Oliver Seidel & Bastian Germann cformsII Plugin up to 15.0.5 on WordPress cross site scripting

CVE-2025-11906 | Progress Flowmon up to 12.5.6 System Configuration permission assignment