CVE-2025-70028

High CVSS: 7.5

An issue pertaining to CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') was discovered in Sunbird-Ed SunbirdEd-portal v1.13.4.

Vendor

Sunbird

Product

Sunbirded-portal

CWE

CWE-22

Yayın Tarihi

2026-03-09 21:16:12

Güncelleme

2026-04-01 15:39:38

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-22 Sunbirded-portal HIGH Sunbird 2026

Referanslar

https://gist.github.com/zcxlighthouse/5efe962621a260331fc95ccbfb7f9e7f https://github.com/Sunbird-Ed https://github.com/Sunbird-Ed/SunbirdEd-portal

Benzer Kayıtlar

High

CVE-2025-70027

An issue pertaining to CWE-918: Server-Side Request Forgery was discovered in Sunbird-Ed SunbirdEd-portal v1.13.4. This…

High

CVE-2025-70030

An issue pertaining to CWE-1333: Inefficient Regular Expression Complexity (4.19) was discovered in Sunbird-Ed SunbirdEd…

High

CVE-2025-70031

An issue pertaining to CWE-352: Cross-Site Request Forgery was discovered in Sunbird-Ed SunbirdEd-portal v1.13.4.

Medium

CVE-2025-70032

An issue pertaining to CWE-601: URL Redirection to Untrusted Site was discovered in Sunbird-Ed SunbirdEd-portal v1.13.4.

Medium

CVE-2025-70033

An issue pertaining to CWE-79: Improper Neutralization of Input During Web Page Generation was discovered in Sunbird-Ed…

High

CVE-2025-70029

An issue in Sunbird-Ed SunbirdEd-portal v1.13.4 allows attackers to obtain sensitive information. The application disabl…