CVE-2025-57753 | sapphi-red vite-plugin-static-copy up to 2.3.1/3.1.1 path traversal (GHSA-pp7p-q8fx-2968)

Inserito da Angelo Barbosa | Ago 21, 2025 | CVE

A vulnerability marked as critical has been reported in sapphi-red vite-plugin-static-copy up to 2.3.1/3.1.1. Affected by this vulnerability is an unknown functionality. This manipulation causes path traversal.

This vulnerability is tracked as CVE-2025-57753. The attack is possible to be carried out remotely. No exploit exists.

It is suggested to upgrade the affected component.

CVE-2025-57753 | sapphi-red vite-plugin-static-copy up to 2.3.1/3.1.1 path traversal (GHSA-pp7p-q8fx-2968)

Post correlati

CVE-2024-20028 | MediaTek MT8512 Da out-of-bounds write (ALPS08541632)

CVE-2024-25998 | Phoenix Contact CHARX SEC-3150 up to 1.5.0 OCPP Service command injection (VDE-2024-011)

CVE-2024-21620 | Juniper Junos OS prior 23.4R2 on SRX/EX URL webauth_operation.php emit_debug_note cross site scripting (JSA76390)

CVE-2024-43044 | Jenkins prior LTS 2.452.3/2.470 Agent Process ClassLoaderProxy#fetchJar information disclosure