CVE-2025-46822

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2025-46822

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-46822.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2025-46822

Related

GHSA-q6mm-cm37-w637

Published

2025-05-21T18:15:52Z

Modified

2025-05-21T20:24:58Z

Summary

[none]

Details

OsamaTaher/Java-springboot-codebase is a collection of Java and Spring Boot code snippets, applications, and projects. Prior to commit c835c6f7799eacada4c0fc77e0816f250af01ad2, insufficient path traversal mechanisms make absolute path traversal possible. This vulnerability allows unauthorized access to sensitive internal files. Commit c835c6f7799eacada4c0fc77e0816f250af01ad2 contains a patch for the issue.

References

Affected packages

Git / github.com/osamataher/java-springboot-codebase

Affected ranges

Type: GIT
Repo: https://github.com/osamataher/java-springboot-codebase
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

c835c6f7799eacada4c0fc77e0816f250af01ad2