CVE-2026-24125

Medium CVSS: 6.3

Tina is a headless content management system. Prior to 2.1.2, TinaCMS allows users to create, update, and delete content documents using relative file paths (relativePath, newRelativePath) via GraphQL mutations. Under certain conditions, these paths are combined with the collection path using path.join() without validating that the resolved path remains within the collection root directory. Because path.join() does not prevent directory traversal, paths containing ../ sequences can escape the intended directory boundary. This vulnerability is fixed in 2.1.2.

Vendor

Ssw

Product

Tinacms\/graphql

CWE

CWE-22

Yayın Tarihi

2026-03-12 17:16:39

Güncelleme

2026-03-13 19:22:04

Source Identifier

security-advisories@github.com

KEV Date Added

Kategoriler

CWE-22 Tinacms\/graphql MEDIUM Ssw 2026

Referanslar

https://github.com/tinacms/tinacms/security/advisories/GHSA-2238-xc5r-v9hj

Benzer Kayıtlar

High

CVE-2026-34603

Tina is a headless content management system. Prior to version 2.2.2, @tinacms/cli recently added lexical path-traversal…

High

CVE-2026-34604

Tina is a headless content management system. Prior to version 2.2.2, @tinacms/graphql uses string-based path containmen…

High

CVE-2026-33949

Tina is a headless content management system. Prior to version 2.2.2, a path traversal vulnerability in @tinacms/graphql…

High

CVE-2026-28791

Tina is a headless content management system. Prior to 2.1.7, a path traversal vulnerability exists in the TinaCMS devel…

Critical

CVE-2026-28792

Tina is a headless content management system. Prior to 2.1.8 , the TinaCMS CLI dev server combines a permissive CORS con…

High

CVE-2026-28793

Tina is a headless content management system. Prior to 2.1.8, the TinaCMS CLI development server exposes media endpoints…