CVE-2025-23562

Medium CVSS: 5.8

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in pitinca XLSXviewer xlsx-viewer allows Path Traversal.This issue affects XLSXviewer: from n/a through <= 2.1.1.

Vendor

Product

CWE

CWE-22

Yayın Tarihi

2025-01-22 15:15:17

Güncelleme

2026-04-23 15:24:03

Source Identifier

audit@patchstack.com

KEV Date Added

Kategoriler

CWE-22 MEDIUM 2025

Referanslar

https://patchstack.com/database/Wordpress/Plugin/xlsx-viewer/vulnerability/wordpress-xlsxviewer-plugin-2-1-1-arbitrary-file-deletion-vulnerability?_s_id=cve